CISA Adds SharePoint RCE Vulnerability to KEV Following Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the high-severity SharePoint Remote Code Execution vulnerability (CVE-2026-45659) to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation. This vulnerability allows authenticated attackers with minimal permissions to execute arbitrary code on Microsoft SharePoint Servers.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability, tracked as CVE-2026-45659 (CVSS score: 8.8), is a case of remote code execution arising from the deserialization of untrusted data. The issue
*** END OF TRANSMISSION ***