Potential sharepoint toolshell cve-2025-53770 exploitation indicators

Intel Name: Potential sharepoint toolshell cve-2025-53770 exploitation indicators

Date of Scan: July 22, 2025

Impact: High

Summary:
Detects potential exploitation of CVE-2025-53770 by monitoring for indicators like suspicious command-line activity observed during post-exploitation stages. CVE-2025-53770 is a zero-day vulnerability in SharePoint that enables remote code execution.

More Details