The US cybersecurity agency CISA has warned that a critical remote code execution vulnerability in Microsoft SharePoint, tracked as CVE-2026-58644, is being actively exploited by threat actors. CISA has added this vulnerability to its Known Exploited Vulnerabilities catalog, urging federal agencies to patch it within three days.
The most valuable insight for you is the urgent need to patch the newly exploited SharePoint vulnerability, CVE-2026-58644, which CISA has added to its Known Exploited Vulnerabilities catalog. As a CISO or security professional, ensuring rapid patch deployment across your organization's SharePoint installations is critical to prevent potential remote code execution attacks. Prioritize this alongside other critical patches like those for Fortinet FortiSandbox vulnerabilities to maintain robust security posture.