Microsoft SharePoint remote code execution (CVE-2026-45659)
Vulnerability
Summary
Hide ▲
Show ▼
Microsoft SharePoint CVE-2026-45659 is a remote code execution vulnerability that lets an authenticated attacker with Site Member permissions run code over the network on affected servers.
Related Happenings
CISA KEV multi-product active exploitation wave (CVE-2020-7796)
Exploitation Wave
First: 18.02.2026 08:52
Last: 18.02.2026 08:52
Sources 1
About this happening:
**CISA** expanded its **KEV catalog** with **four actively exploited flaws**, signaling a live exploitation wave across **Chrome, TeamT5 ThreatSonar, Zimbra, and Windows Video Act...
CISA KEV multi-product active exploitation wave (CVE-2020-7796)
Exploitation WaveAbout this happening: **CISA** expanded its **KEV catalog** with **four actively exploited flaws**, signaling a live exploitation wave across **Chrome, TeamT5 ThreatSonar, Zimbra, and Windows Video Act...
SolarWinds Web Help Desk (WHD) multi-stage exploitation wave
Exploitation Wave
First: 09.02.2026 16:42
Last: 09.02.2026 16:42
Sources 1
About this happening:
**SolarWinds Web Help Desk (WHD)** exploitation is a **multi-stage intrusion wave** affecting **internet-exposed WHD instances**. The foothold remains unconfirmed, but the wave is...
SolarWinds Web Help Desk (WHD) multi-stage exploitation wave
Exploitation WaveAbout this happening: **SolarWinds Web Help Desk (WHD)** exploitation is a **multi-stage intrusion wave** affecting **internet-exposed WHD instances**. The foothold remains unconfirmed, but the wave is...
Latest development: 10.03.2026 08:17
CISA added CVE-2025-26399 in SolarWinds Web Help Desk to its Known Exploited Vulnerabilities (KEV) catalog after evidence of active exploitation, said Microsoft and Huntress had reported threat actors using SolarWinds Web Help Desk flaws to obtain initial access, attributed the activity to the Warlock ransomware crew, and ordered Federal Civilian Executive Branch (FCEB) agencies to apply the fix by March 12, 2026.
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector Action
First: 04.02.2026 07:50
Last: 04.02.2026 07:50
Sources 1
About this happening:
**CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551
Public Sector ActionAbout this happening: **CISA** added **CVE-2025-40551** in **SolarWinds Web Help Desk** to the **KEV catalog** and imposed **federal remediation deadlines**, turning a newly exploited flaw into a compl...
CISA adds five KEV flaws and sets FCEB remediation deadline
Public Sector Action
First: 20.10.2025 22:00
Last: 20.10.2025 22:00
Sources 1
About this happening:
**CISA** added **CVE-2025-61884** in **Oracle E-Business Suite** to its **Known Exploited Vulnerabilities (KEV) Catalog** after confirming it is being **actively exploited**. The...
CISA adds five KEV flaws and sets FCEB remediation deadline
Public Sector ActionAbout this happening: **CISA** added **CVE-2025-61884** in **Oracle E-Business Suite** to its **Known Exploited Vulnerabilities (KEV) Catalog** after confirming it is being **actively exploited**. The...
Timeline
-
26.05.2026 14:49 2 articles · 1d ago
Microsoft rolls out SharePoint RCE fixes for CVE-2026-45659
Mitigation Patch UpdateMicrosoft rolled out updates to fix a remote code execution vulnerability in Microsoft Office SharePoint tracked as CVE-2026-45659, rated CVSS 8.8 and important severity. The flaw lets an authenticated attacker with Site Member permissions execute code over a network without elevated privileges, and Microsoft released updates for SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016.
Show sources
- Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions — thehackernews.com — 26.05.2026 14:49
- Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions — thehackernews.com — 26.05.2026 14:49