Cve-2026-45659

SharePoint CVE-2026-45659: Site Member Permissions Are Enough to Pop the Farm

Microsoft patched CVE-2026-45659, an 8.8-severity SharePoint deserialization RCE that only requires Site Member permissions — the lowest tier any authenticated user can have.