Spoofing Vulnerability in Microsoft Office SharePoint
CVE-2025-49706
6.3MEDIUM
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 8 July 2025
What is CVE-2025-49706?
An improper authentication vulnerability in Microsoft Office SharePoint allows a potentially authorized attacker to exploit network communications, enabling spoofing attacks. This unauthorized manipulation could lead to a compromise of sensitive data and system integrity, highlighting the need for immediate security measures and patching.
Affected Version(s)
Microsoft SharePoint Enterprise Server 2016 x64-based Systems 16.0.0 < 16.0.5508.1000
Microsoft SharePoint Server 2019 x64-based Systems 16.0.0 < 16.0.10417.20027
Microsoft SharePoint Server Subscription Edition x64-based Systems 16.0.0 < 16.0.18526.20424