
CISA Warns Actively Exploited Microsoft SharePoint RCE Flaw Requires Urgent Patch
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation in the wild. Tracked as CVE-2026-45659, the flaw is a deserialization-of-untrusted-data vulnerability affecting Microsoft SharePoint Server. The Vulnerability stems from CWE-502, a well-documented class of bugs where an application […]
The post CISA Warns Actively Exploited Microsoft SharePoint RCE Flaw Requires Urgent Patch appeared first on Cyber Security News.