Below are the security fixes for the SharePoint OnPrem versions released this month.
SharePoint Server 2016:
- KB 5002692 – SharePoint Server 2016 (language independent)
- KB 5002682 – SharePoint Server 2016 (language dependent)
Microsoft Support recommends to install the complete April 2025 CU for SharePoint 2016 rather than individual security fixes.
SharePoint Server 2019:
- KB 5002691 – SharePoint Server 2019 (language independent)
- KB 5002680 – SharePoint Server 2019 (language dependent)
Microsoft Support recommends to install the complete April 2025 CU for SharePoint 2019 rather than individual security fixes.
SharePoint Server Subscription Edition:
- KB 5002705 – SharePoint Server Subscription Edition
This security fix is identical with April 2025 CU for SharePoint Server Subscription Edition.
Office Online Server:
- KB 5002699 – Office Online Server
More information:
Please ensure to have a look at the SharePoint Patching Best Practices before applying new fixes.
Security Vulnerabilities fixed in this PU
| Vulnerability | SP 2016 | SP 2019 | SP SE | OOS | Impact | Max Severity |
|---|---|---|---|---|---|---|
| CVE-2025-26642 | x | x | Remote Code Execution | Important | ||
| CVE-2025-27746 | x | x | Remote Code Execution | Important | ||
| CVE-2025-27747 | x | x | Remote Code Execution | Important | ||
| CVE-2025-27751 | x | Remote Code Execution | Important | |||
| CVE-2025-29793 | x | x | x | Remote Code Execution | Important | |
| CVE-2025-29794 | x | x | x | Remote Code Execution | Important | |
| CVE-2025-29820 | x | Remote Code Execution | Important |
See the Security Update Guide below for more details about the relevant fixes:
Permalink
Thanks for detailing the April PU — always helpful to have the specific KBs broken down. We’ve run into issues before when only applying the security patches, so the CU recommendation is a good reminder.
Permalink
Hi all.
Sharepoint 2016 on Server 2016 does not install KB 5002692 here. The logfile does not tell me anything useful apart from error 1603. All previous sharepoint updates installed alright, first time that I am stuck with no clue.
Hints for previous updates that had 1603 included „please stop certain services (IIS, Appfabric Cache,…), then retry“ didn’t work for me.
Anyone else seeing this?
Permalink
Same here. Performed a graceful stop on the distributed cache, stopped IIS, cleared the configuration cache, turned off the AMSI on the web applications… no clue.
Permalink
There is a wrongly signed file in the package. We will all have to wait for Microsoft to correct and re-release the KB.
If you check your user local %temp% and open sts-x-none_MSPLOG.LOG you will see:
MSI (s) (AC:B8) [09:11:37:838]: Assembly Error:Strong name signature verification failed for assembly ‘%1’. The assembly may have been tampered with, or it was delay signed but not fully signed with the correct private key.
Permalink
I copied Welf Alberts comment, as we are seeing the exact same issue….
Sharepoint 2016 on Server 2016 does not install KB 5002692 here. The logfile does not tell me anything useful apart from error 1603. All previous sharepoint updates installed alright, first time that I am stuck with no clue.
Hints for previous updates that had 1603 included „please stop certain services (IIS, Appfabric Cache,…), then retry“ didn’t work for me.
We’re thinking bad patch. It’s effecting multiple servers in multiple domains. It would have to be the patch, right?
Permalink
I have been struggling with same problem but today I have noticed this:
https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-sharepoint-enterprise-server-2016-april-8-2025-kb5002692-fc39103a-9fb7-4003-bdd3-9e61ed93359d
Permalink
Great website! Do you know how to solve issue when after installing March/April CU there is no longer option to search Crawling menu?
I have an error: “the remote certificate is invalid according to the validation procedure.”
Before march 2025 KB everything was working fine :/ I know about new TLS implementation from MS with March 25 CU but I don’t know yet how to restore full access to search Crawling menu.
How should I reconfigure Sharepoint SE Central Administration and/or SQL to restore fully functionality? Implementing HTTPS on CA?
Permalink
Hi Pawel,
that might require a detailed analysis of your servers.
Best would be to open a support case with Microsoft to get assistance.
Cheers,
Stefan
Permalink
Hi i have a strange problem SharePoint links with ; have stopped working, there link is is changed to %3b
It started around the last March 2025 CU.
Tried this one, still the same 🙁
SharePoint 2019.
Permalink
FYI: KB 5002692 has been revised and “should” work now. Anyone tested already? Will let you know tonight or tomorrow.
Permalink
I tested it and it works. You can also download it.
Permalink
The new version installed alright on two servers here.