The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-58644 to its Known Exploited Vulnerabilities catalog following evidence of zero-day exploitation. This critical flaw allows authenticated attackers with Site Owner permissions to e…
Affected versions include SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. Threat actors are reportedly chaining this flaw with other vulnerabili…