Sharepoint Server
The latest Sharepoint Server coverage — news, analysis, and updates from the WindowsNews.AI desk.
Urgent SharePoint RCE: CVE-2026-47298 Patched in June 2026 Patch Tuesday Release
Microsoft released a critical out-of-band security update on June 9, 2026, addressing a remote code execution vulnerability in SharePoint Server Subscription Edition tracked as CVE-2026-47298. The...
CVE-2026-45453 SharePoint Spoofing: Patch June Updates to Block Attacks
Microsoft has published CVE-2026-45453 in its Security Update Guide, marking a new spoofing vulnerability that on-premises SharePoint Server administrators will need to evaluate this June. The...
CVE-2026-44821: Microsoft Office Info Leak Patched on Windows, Mac Users Must Wait
Microsoft's June 2026 Patch Tuesday brought a fix for CVE-2026-44821, an information disclosure vulnerability in Microsoft Office rated Important. The flaw, caused by an out-of-bounds read, could...
CVE-2026-45479 SharePoint Spoofing Vulnerability: Why You Must Patch Now
Microsoft has registered CVE-2026-45479 in its Security Update Guide as a spoofing vulnerability affecting SharePoint Server. The listing appeared in June 2026 with a terse description that leaves...
Microsoft Issues Urgent Patch for Critical SharePoint Server 2019 RCE Flaw
Microsoft has released security updates to address a critical remote code execution vulnerability in SharePoint Server 2019, tracked as CVE-2026-40365. The patch, delivered via the SharePoint Server...
CVE-2026-40357 SharePoint RCE Exploit Warning: Patch Now or Risk Breach
Microsoft’s security advisory for CVE-2026-40357 isn’t just another patch note—it’s a klaxon. The SharePoint Server remote code execution vulnerability, listed in the May 2026 Security Update...
CVE-2026-33112: Critical SharePoint RCE Hits On-Prem Servers May 12
Microsoft dropped a bombshell on administrators this Patch Tuesday with the publication of CVE-2026-33112, a confirmed remote code execution vulnerability in Microsoft SharePoint Server. The...
May 12 Patch Fixes CVE-2026-35439: Authenticated SharePoint RCE via Deserialization
Microsoft has disclosed CVE-2026-35439, an Important-rated remote code execution vulnerability in on-premises SharePoint Server, patched in the May 12, 2026 security updates. The flaw stems from...
CISA Adds 17-Year-Old Office Flaw to KEV Catalog: CVE-2009-0238 Still Actively Exploited
The Cybersecurity and Infrastructure Security Agency has added two Microsoft vulnerabilities to its Known Exploited Vulnerabilities Catalog, including a 17-year-old Office flaw that attackers...
CVE-2026-20945: Patch SharePoint Servers Now as Spoofing Bug Threatens Enterprise Trust
Microsoft has published a new security advisory for a SharePoint Server spoofing vulnerability, CVE-2026-20945, with a clear message: apply the update. Although the company has kept the technical...
Critical Zero-Day Vulnerability in Microsoft SharePoint Server Exploited in Wide-Ranging Cyberattacks
In a stark reminder of the evolving landscape of cybersecurity threats facing enterprise infrastructure, a major zero-day vulnerability in Microsoft’s on-premises SharePoint Server platforms has...
Urgent Microsoft Patch for Critical SharePoint Server Vulnerabilities Amid Sophisticated Cyber Attacks
In recent weeks, Microsoft has taken decisive action to address a rapidly evolving cyber threat targeting on-premises SharePoint Servers. The urgency surrounding this security patch underscores the...