< BACK TO NEWS
importantSYS.SOURCE: The Hacker News2026-07-17T12:12:23+05:30

CISA Updates KEV with Critical SharePoint RCE Zero-Day CVE-2026-58644

CISA has added the critical remote code execution (RCE) vulnerability CVE-2026-58644 in Microsoft SharePoint Server to its KEV catalog, requiring federal agencies to apply patches by July 19, 2026. The flaw, rated 9.8/10 on CVSS, is actively exploited in the wild and enables unauthorized code execution through deserialization of untrusted data.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly patched security flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by July 19, 2026.

The vulnerability in question is CVE-2026-58644 (CVSS score: 9.8), a critical deserialization

Read original article

*** END OF TRANSMISSION ***

> DYSON HOT+COOL HF1 REPLACES SPACE HEATER AND CEILING FAN WITH 2-IN-1 SMART APPLIANCE> APPLE'S TRADE SECRETS LAWSUIT AGAINST OPENAI MAY IMPACT IPO TIMELINE> KEY INSIGHTS ON OPTIMIZING AND MANAGING SQLITE DATABASES> NADMESH BOTNET EXPLOITS EXPOSED AI SERVICES TO STEAL CLOUD CREDENTIALS AND KUBERNETES TOKENS> GOLDENEYEDOG SUBGROUP EXPLOITS DIGICERT BREACH TO STEAL CODE-SIGNING CERTIFICATES> HOMOMORPHIC ENCRYPTION FOR CIFAR-10 INFERENCE WITH 200MS LATENCY> GOOGLE'S NOTO 3D EMOJI DEVELOPMENT: INTEGRATING DESIGN, DATA, AND AI FOR MODERN COMMUNICATION> FBI ARRESTS FLORIDA MAN FOR CRYPTO WALLET THEFT VIA MALWARE-INFECTED STEAM GAMES> COMPANIES DEVELOP SAFER SMARTPHONE SOLUTIONS FOR CHILDREN> EXPLORING MODERN CREATOR WORKSPACES THROUGH WEEKLY DESK SETUP TOURS> DYSON HOT+COOL HF1 REPLACES SPACE HEATER AND CEILING FAN WITH 2-IN-1 SMART APPLIANCE> APPLE'S TRADE SECRETS LAWSUIT AGAINST OPENAI MAY IMPACT IPO TIMELINE> KEY INSIGHTS ON OPTIMIZING AND MANAGING SQLITE DATABASES> NADMESH BOTNET EXPLOITS EXPOSED AI SERVICES TO STEAL CLOUD CREDENTIALS AND KUBERNETES TOKENS> GOLDENEYEDOG SUBGROUP EXPLOITS DIGICERT BREACH TO STEAL CODE-SIGNING CERTIFICATES> HOMOMORPHIC ENCRYPTION FOR CIFAR-10 INFERENCE WITH 200MS LATENCY> GOOGLE'S NOTO 3D EMOJI DEVELOPMENT: INTEGRATING DESIGN, DATA, AND AI FOR MODERN COMMUNICATION> FBI ARRESTS FLORIDA MAN FOR CRYPTO WALLET THEFT VIA MALWARE-INFECTED STEAM GAMES> COMPANIES DEVELOP SAFER SMARTPHONE SOLUTIONS FOR CHILDREN> EXPLORING MODERN CREATOR WORKSPACES THROUGH WEEKLY DESK SETUP TOURS