PT-2026-32853

Name of the Vulnerable Software and Affected Versions Microsoft SharePoint Server affected versions not specified Microsoft SharePoint Server Subscription Edition affected versions not specified Microsoft SharePoint Enterprise Server affected versions not specified Description Improper input...

Microsoft SharePoint Deserialization of Untrusted Data Vulnerability

Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network...

Microsoft SharePoint Server Remote Code Execution Vulnerability (CNVD-2026-16162)

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A remote code...

Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2026-16164)

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A spoofing...

CVE-2026-26106

CVE-2026-26106 is a Microsoft SharePoint Server remote code execution vulnerability caused by improper input validation. The CVE affects SharePoint Server variants (Office/SharePoint components) and enables an authenticated (network) attacker with low privileges to execute arbitrary code, potenti...

CVE-2026-26106 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-26114 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-26114 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-26105 Microsoft SharePoint Server Spoofing Vulnerability

...

CVE-2026-26105

CVE-2026-26105 affects Microsoft SharePoint Server and is a spoofing vulnerability. The available data indicate a NETWORK attack vector with LOW complexity and no privileges required, but user interaction is required. Confidentiality and integrity impacts are HIGH, while availability is unaffecte...

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

You can't control when the next critical vulnerability drops. You can control how much of your environment is exposed when it does. The problem is that most teams have more internet-facing exposure than they realise. Intruder's Head of Security digs into why this happens and how teams can manage ...

Microsoft SharePoint 代码问题漏洞

Microsoft SharePoint Server is an enterprise business collaboration platform from Microsoft. The platform is used to consolidate business information and enable sharing of work, collaborating with others, organizing projects and workgroups, and searching for people and information. A remote code...

CVE-2026-20951

Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to execute code locally...

CVE-2026-20958 Microsoft SharePoint Information Disclosure Vulnerability

...

CVE-2026-20958

CVE-2026-20958 is a Microsoft SharePoint SSRF information-disclosure vulnerability. Affected product: Microsoft Office SharePoint (on-premises SharePoint Server/Subscription Edition). Description in sources: SSRF in SharePoint could permit an authorized attacker to disclose information over a net...

CVE-2026-20947 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-20947 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

CVE-2026-20963 Microsoft SharePoint Remote Code Execution Vulnerability

...

CVE-2026-20963 Microsoft SharePoint Remote Code Execution Vulnerability

...

CVE-2026-20959 Microsoft SharePoint Server Spoofing Vulnerability

...