DEV Community

Cover image for CISA Reports Active Exploitation of SharePoint RCE Flaw
BeyondMachines for BeyondMachines

Posted on • Originally published at beyondmachines.net

CISA Reports Active Exploitation of SharePoint RCE Flaw

Summary

CISA warned that attackers are exploiting a high-severity SharePoint vulnerability (CVE-2026-45659) that allows authenticated users to run arbitrary code.

Take Action:

If you run on-premises Microsoft SharePoint Server (Subscription Edition, 2019, or 2016), this is urgent. Your Sharepoint is under attack. Apply Microsoft's security update for CVE-2026-45659 immediately. Prioritize any internet-facing SharePoint instances first, and confirm every server is updated to the latest secure version. If possible, isolate SharePoint from the Internet.


Read the full article on BeyondMachines


This article was originally published on BeyondMachines

Top comments (0)