Access to SharePoint on-premises sites

Description

Update – July 21, 2025, 8:00 pm

Security updates released from Microsoft have been applied successfully

Due to a recently discovered vulnerability affecting the on-premises versions of Microsoft SharePoint, University of Missouri’s Information Security Officers have implemented limited access to SharePoint on-premises sites only to systems using campus IP addresses or VPN connections, effective immediately.

Impact:

This change affects sites in these domains, used with SharePoint on-premises:
• collaborate.umsystem.edu
• mysharepoint.umsl.edu
• sharepoint.umsystem.edu

Exceptions:
• This vulnerability and resulting change do NOT affect SharePoint Online sites, which are located within mailmissouri.sharepoint.com.
• Sites within locker.umsystem.edu or mylocker.umsl.edu have always been limited to campus systems and VPN.

Additional information:
• Microsoft has not yet released a security fix for this vulnerability, which is why the access restriction is needed.
• Sites within the affected domains should have already been migrated to SharePoint Online or other approved solution, and the SharePoint on-premises sites should be set to read-only. If you are still using information from an on-premises site and cannot access it via a campus system or over VPN, please contact Sharepoint@umsl.edu for assistance.
• If you have further questions or issues, please reach out to the UMSL ISO at monroem@umsl.edu

Mark Monroe
Information Security Officer
University Of Missouri St. Louis
(314)516-4859