March 19, 2026

CISA Warns of Recent SharePoint Vulnerability Attacks: Protect Your Network

Vaibhav March 19, 2026
CISA Warns of Recent SharePoint Vulnerability Attacks: Protect Your Network
Post Views: 11

Critical Vulnerability in Microsoft SharePoint Actively Exploited

A critical vulnerability in Microsoft SharePoint has been actively exploited by attackers, according to a warning from the Cybersecurity and Infrastructure Security Agency (CISA). The flaw, identified as CVE-2026-20963, was patched by Microsoft in January 2026 as part of its monthly Patch Tuesday updates.

Vulnerability Details

CVE-2026-20963 is a remote code execution vulnerability that arises from the deserialization of untrusted data. It affects SharePoint Server 2016, 2019, and Subscription Edition, and is considered critical, with a CVSS score of 9.8. An anonymous researcher reported the issue to Microsoft.

Exploitation and Mitigation

In a network-based attack, an unauthenticated attacker can exploit this vulnerability to inject and execute arbitrary code on a SharePoint Server. Microsoft has updated its advisory for CVE-2026-20963, but has not publicly confirmed active exploitation.

CISA added the vulnerability to its Known Exploited Vulnerabilities (KEV) catalog on March 18, instructing federal agencies to address it by March 21.

Additional Context

CISA’s KEV catalog currently includes nine SharePoint vulnerabilities, including three disclosed in 2025 that were associated with the ToolShell attacks. The agency’s warning serves as a reminder to organizations to prioritize patching and vulnerability management to prevent exploitation by attackers.

Recommendations

The exploitation of CVE-2026-20963 highlights the importance of timely patching and vulnerability management. Organizations should ensure that they have applied the necessary patches to prevent exploitation of this critical vulnerability.



About Author

Vaibhav

See author's posts

More Stories

Teleport's Beams Aims to Overcome Major Hurdle in Developing Autonomous AI Systems

Teleport’s Beams Aims to Overcome Major Hurdle in Developing Autonomous AI Systems

Vaibhav March 19, 2026
International Cyber Fraud Busted in Srinagar, 7 Arrested in Digital Call Centre Scam

International Cyber Fraud Busted in Srinagar, 7 Arrested in Digital Call Centre Scam

Vaibhav March 19, 2026
Critical UniFi Account Takeover Vulnerability: Protect Your Network from Severe Exploits

Critical UniFi Account Takeover Vulnerability: Protect Your Network from Severe Exploits

Vaibhav March 19, 2026

Latest Cyber Security News

Teleport's Beams Aims to Overcome Major Hurdle in Developing Autonomous AI Systems

Teleport’s Beams Aims to Overcome Major Hurdle in Developing Autonomous AI Systems

Vaibhav March 19, 2026
Bank Accounts Compromised: 3.5% Commission Scam Spreads Across 16 States

Bank Accounts Compromised: 3.5% Commission Scam Spreads Across 16 States

Vaibhav March 19, 2026
International Cyber Fraud Busted in Srinagar, 7 Arrested in Digital Call Centre Scam

International Cyber Fraud Busted in Srinagar, 7 Arrested in Digital Call Centre Scam

Vaibhav March 19, 2026
Critical UniFi Account Takeover Vulnerability: Protect Your Network from Severe Exploits

Critical UniFi Account Takeover Vulnerability: Protect Your Network from Severe Exploits

Vaibhav March 19, 2026
Non-Human Identity Theft Explosions: SpyCloud's 2026 Identity Exposure Report

Non-Human Identity Theft Explosions: SpyCloud’s 2026 Identity Exposure Report

Vaibhav March 19, 2026
en_USEnglish
en_USEnglish