๐ฅ This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)
CVE-2026-45659: Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability
Summary
Microsoft SharePoint Server has a deserialization of untrusted data vulnerability (a flaw where the software unsafely processes data from an untrusted source, allowing an attacker to inject malicious code), which lets an authorized attacker run code over a network. This vulnerability is actively being exploited in real attacks. Organizations must apply security updates following CISA's BOD 26-04 guidance by July 4, 2026, or stop using the product if no fix is available.
Solution / Mitigation
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA's BOD 26-04 Prioritizing Security Updates Based on Risk guidance. Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. See https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659 for vendor-specific details and https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk for patching guidelines.
Vulnerability Details
EPSS: 2.8%
Yes
๐ฅ Actively Exploited
June 30, 2026
Classification
Taxonomy References
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-45659
First tracked: July 1, 2026 at 08:00 PM
Classified by LLM (prompt v3) ยท confidence: 75%