Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That.

**Microsoft SharePoint RCE (CVE-2026-45659)** — A critical deserialization vulnerability in Microsoft SharePoint (CVSS 8.8) can allow authenticated attackers with low-privilege (Site Member) accounts to achieve remote code execution; patches are available for SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016 and should be applied immediately.