Sharepoint

vulnerabilities 2026-05-27
SharePoint CVE-2026-45659: Site Member Permissions Are Enough to Pop the Farm
Microsoft patched CVE-2026-45659, an 8.8-severity SharePoint deserialization RCE that only requires Site Member permissions — the lowest tier any authenticated user can have.
sharepoint microsoft deserialization rce cve-2026-45659 patch-tuesday
vulnerabilities 2026-04-14
Microsoft April 2026 Patch Tuesday Fixes 167 Flaws Including Actively Exploited SharePoint Zero-Day
Microsoft's second-largest Patch Tuesday ever addresses 167 vulnerabilities, including an actively exploited SharePoint XSS flaw and a critical CVSS 9.8 Windows IKE remote code execution bug.
microsoft patch-tuesday zero-day sharepoint windows CVE-2026-32201 CVE-2026-33825 CVE-2026-33824

SharePoint CVE-2026-45659: Site Member Permissions Are Enough to Pop the Farm