KB5002681 is the latest security update for Microsoft Sharepoint Server Subscription edition. It was released on 11 February 2025 under the ‘Patch Tuesday’ project.
Salient points
- KB5002681 supersedes KB5002676. KB5002676 for Sharepoint Subscription edition was last released on 14 January 2025.
- KB5002681 corresponds to Sharepoint build 16.0.17928.20396.
- KB5002681 resolves a security vulnerability, CVE-2025-21400 in the Sharepoint Subscription edition.
- Apart from fixing the security vulnerability, there are non-security product improvements in KB5002681.
Security vulnerability in Sharepoint Subscription Edition
CVE-2025-21400 is the security vulnerability affecting Microsoft Sharepoint Subscription Edition.
- CVE-2025-21400 is a Remote Code Execution vulnerability.
- It has a CVSS score of 8.1 and ‘Important’ severity.
- An attacker could connect to a malicious server, and that could allow the attacker to gain code execution on the client. In a network-based attack, an authenticated attacker, as at least a Site Owner, could write arbitrary code to inject and execute code remotely on the SharePoint Server.
Non-security improvements – KB5002681
The following non-security improvements are part of the KB5002681 security update for Microsoft Sharepoint Subscription Edition:
- Fixes an issue in which computed columns (such as managed metadata, person, and lookup) show an ID instead of the actual value in the list item display form of modern lists if the field is not visible.
- Fixes an issue in which the information panel doesn’t validate Windows accounts that are set in the Person column if the web application has multiple authentication modes.
- Fixes an issue in which the Date column shows “30.12.1899” instead of the correct value if the list contains any column that use custom formatting.
- Fixes an issue in which you cannot create list items from personal sites.
Installation of KB5002681
KB5002681 can be installed through the Windows Update program automatically.
For manual installations, you can download the KB5002681 file from the Microsoft Update Catalog site. Or, you could get the file from the Microsoft Download Center.
- Download KB5002681 from the Microsoft Update Catalog – 1537.7 MB
- Download KB5002681 from the Microsoft Download Center
Post-deployment of KB5002681, the Sharepoint server may restart. So, please plan the change in a scheduled window.