High severity8.8NVD Advisory· Published Jun 10, 2025· Updated Jun 17, 2026
CVE-2025-47172
CVE-2025-47172
Description
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: 16.0.0
16.0.0+ 1 more
- (no CPE)range: 16.0.0
- (no CPE)range: 16.0.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.