logo

CISA: Microsoft SharePoint RCE flaw now actively exploited

ID: 69316d29-64c5-56d6-ac2a-991451a91b66

STIX ID: report--69316d29-64c5-56d6-ac2a-991451a91b66

Feed Name: Bleeping Computer

Threat Score
80/100

Date Published: 2026-07-02

Date Updated: 2026-07-02

Author: Sergiu Gatlan

...
...

The U.S. CISA warns that attackers have begun exploiting a high-severity Microsoft SharePoint RCE (CVE-2026-45659) arising from unsafe deserialization, enabling low-privilege authenticated actors to run arbitrary code remotely. Microsoft released updates for affected SharePoint Server versions on May 21, CISA added the flaw to its Known Exploited Vulnerabilities catalog and ordered federal agencies to remediate, while Shadowserver reports over 10,000 SharePoint servers exposed online.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.