Over 1,300 Microsoft SharePoint servers remain vulnerable to a spoofing attack due to an unpatched security flaw (CVE-2026-32201) that has been actively exploited since being identified as a zero-day. Despite Microsoft releasing patches, fewer than 200 systems have been secured, prompting CISA to mandate that federal agencies address this vulnerability by April 28, 2026.
Over 1,300 Microsoft SharePoint servers remain unpatched against CVE-2026-32201, a zero-day spoofing vulnerability that allows attackers to exploit improper input validation. As a cybersecurity professional, prioritize ensuring that all SharePoint servers in your network are updated with the latest patches from Microsoft's April 2026 Patch Tuesday release to mitigate this known exploited vulnerability immediately.