CVE-2025-21348: 
vulnerability analysis and mitigation

Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2025-21348) was disclosed on January 14, 2025. This vulnerability affects multiple versions of SharePoint Server, including SharePoint Server 2016 Enterprise, SharePoint Server 2019, and SharePoint Server Subscription Edition versions up to 16.0.17928.20356 (NVD).

The vulnerability has been assigned a CVSS v3.1 Base Score of 7.2 (HIGH) with the following vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. The vulnerability is classified under CWE-285 (Improper Authorization) according to Microsoft's assessment (NVD).

If successfully exploited, this vulnerability could allow an attacker to execute remote code on affected SharePoint Server installations. The high CVSS score indicates potential severe impacts on confidentiality, integrity, and availability of the affected systems (NVD).

Microsoft has released security updates to address this vulnerability. The patches are available through various channels including Microsoft Update, Microsoft Update Catalog, and Microsoft Download Center. For SharePoint Server 2019, update KB5002666 (build 16.0.10416.20041) has been released, and for SharePoint Enterprise Server 2016, update KB5002672 (build 16.0.5483.1001) is available (Microsoft Support 2019, Microsoft Support 2016).