Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed
ID: 8fadb200-5ee3-5982-b2fa-4b8c7cfc5924
STIX ID: report--8fadb200-5ee3-5982-b2fa-4b8c7cfc5924
Feed Name: TechRepublic Security
Threat Score
## Executive summary Microsoft disclosed CVE-2026-32201, an improper input validation flaw in SharePoint Server (2016, 2019, Subscription Edition) that enables network spoofing; Microsoft confirmed zero-day exploitation prior to the April 2026 patches and Shadowserver reports over 1,300 internet-facing SharePoint instances remain unpatched, increasing exposure and risk to organizations.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.