PT-2025-30603 · Undefined · Undefined
Published
2025-07-22
·
Updated
2025-07-22
·
CVE-2025-53700
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
#ParsedReport #CompletenessLow
22-07-2025
CVE-202553770/TOOLSHELL: HUNTING DOWN THE ATTACKER TECHNIQUES &VICTIMS
Report completeness: Low
Actors/Campaigns:
Arcanedoor
Threats:
Toolshell vuln
Barracuda tool
Victims:
Microsoft sharepoint users
Geo:
Ireland, Iran, Greece, Germany, Russia
CVEs:
CVE-2025-53700 [Vulners]
CVSS V3.1: Unknown,
Vulners: Exploitation: Unknown
X-Force: Risk: Unknown
X-Force: Patch: Unknown
CVE-2025-53770 [Vulners]
CVSS V3.1: 9.8,
Vulners: Exploitation: True
X-Force: Risk: Unknown
X-Force: Patch: Unknown
Soft:
- microsoft sharepoint server (<16.0.18526.20508, 2016, 2019)
ChatGPT TTPs:
do not use without manual check
T1036, T1070.004, T1071.001, T1090.002, T1105, T1210, T1497.003, T1562.001
IOCs:
Coin: 1
Hash: 5
File: 6
IP: 11
Soft:
Twitter, Microsoft SharePoint Server, Microsoft SharePoint, Sharepoint Server, Chrome, Microsoft Edge, Chromium
Algorithms:
md5, sha256, ecdsa, base64
Platforms:
intel
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Undefined