Detections
Analytics

Microsoft SharePoint Server Authentication Bypass (CVE-2025-53771)

medium Nessus Plugin ID 242983

Language:

Version 1.11

Nov 3, 2025, 9:25 PM

  • Logic Changes (Corrects handling base64 encoded HTTP cookies)

Plugin Feed: 202511032125

Version 1.10

Oct 27, 2025, 3:15 PM

  • Logic Changes (Gate HTTP debugging behind hidden preference)

Plugin Feed: 202510271515

Version 1.9

Oct 23, 2025, 3:11 AM

  • Logic Changes (Fix HTTP/1 library to make sure it closes unused Keep-Alive connections)

Plugin Feed: 202510230311

Version 1.7

Oct 16, 2025, 4:39 PM

  • Logic Changes (Implement workaround in HTTP library to prevent triggering an engine bug.)

Plugin Feed: 202510161639

Version 1.5

Oct 1, 2025, 9:12 PM

  • Logic Changes (Adding support for user-supplied header added to all HTTP requests.)

Plugin Feed: 202510012112

Version 1.4

Sep 30, 2025, 12:41 AM

  • Logic Changes (Add extra checks to see whether plugins should run. Modernisation of the HTTP/1 library. Various corrections and fixes for CPE related Flatline Test Failures. Remove spurious authentication header.)

Plugin Feed: 202509300041

Version 1.2

Aug 11, 2025, 11:36 PM

  • Logic Changes (Minor code change)

Plugin Feed: 202508112336

Version 1.1

Jul 30, 2025, 1:46 AM

  • New

Plugin Feed: 202507300146

* Changelogs are generally available for changes made after Nov 1, 2022