Microsoft SharePoint security advisory (AV25-433) – Update 1

Serial number: AV25-433
Date: July 21, 2025
Updated: July 22, 2025

On July 19, 2025, Microsoft published a security advisory to address vulnerabilities in multiple products. Included were critical updates for the following products:

  • Microsoft SharePoint Server Subscription Edition – versions prior to KB5002768
  • Microsoft SharePoint Server 2016 – versions prior to KB5002760
  • Microsoft SharePoint Server 2019 – versions prior to KB5002754

Microsoft states that for SharePoint 2016 and 2019 "Both the server and language pack updates should be installed".

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Date modified: