CVE-2026-45659: Microsoft Sharepoint Server

What is CVE-2026-45659?

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CVSS8.8 NVD 3.1

SeverityHIGH

ExploitationNo exploitation reported

Triage statusNo Known Exploit

ActionPatch this week

CVSS vectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

NVD published2026-05-22

NVD last modified2026-05-27

Affected product

Microsoft Sharepoint Server

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659
https://nvd.nist.gov/vuln/detail/CVE-2026-45659

Coverage on defend.network

Critical RCEs and credential leaks: Microsoft SharePoint, CISA AWS exposure, MuddyWater espionage (2026-05-27)

🤖 This CVE page is generated by defend.network from NVD, CISA KEV, EPSS, and our verified daily briefings. Severity and exploitation data come from official sources; always verify remediation steps against the official vendor advisory before acting in production.

What is CVE-2026-45659?

Affected product

References

Coverage on defend.network

Get Critical CVE Alerts