CISA has added a newly exploited remote code execution vulnerability in SharePoint, identified as CVE-2026-58644, to its Known Exploited Vulnerabilities (KEV) catalog, highlighting the ongoing cybersecurity threats organizations face.
The recent addition of the SharePoint RCE Zero-Day CVE-2026-58644 to the CISA Known Exploited Vulnerabilities (KEV) catalog underscores the urgency for cybersecurity professionals to prioritize patch management and monitor for signs of exploitation. For a CISO, this highlights the necessity of ensuring robust vulnerability management processes are in place and that teams are prepared to swiftly respond to emerging threats, particularly those involving widely-used enterprise applications like SharePoint.