Exposures › CVE-2026-45659
Microsoft SharePoint Server allows remote code execution via deserialization of untrusted data.
An authorized attacker can execute arbitrary code over a network by exploiting a deserialization vulnerability in SharePoint Server, enabling lateral movement and data exfiltration. DIB organizations must patch immediately to prevent unauthorized access to sensitive data and maintain FedRAMP/NIST 800-171 compliance. This failure is critical because it allows remote code execution without requiring a zero-day exploit.
Shame score — The vulnerability is actively exploited but not zero-day, and while it allows RCE, it requires an authorized attacker to trigger, reducing immediate embarrassment compared to public-facing exploits.
Microsoft SharePoint Server contains a deserialization of untrusted data vulnerability which allows an authorized attacker to execute code over a network.
| Product | Provider | Status | Match |
|---|---|---|---|
| Azure Commercial Cloud | Microsoft | Authorized | vendor-exact · 0.90 |
| Azure Government (includes Dynamics 365) | Microsoft | Authorized | vendor-exact · 0.90 |
| Microsoft Office 365 GCC High | Microsoft | In Process | vendor-exact · 0.90 |
| Office 365 Multi-Tenant & Supporting Services | Microsoft | Authorized | vendor-exact · 0.90 |