THREAT OPS › CVEs › CVE-2026-20963
CVE-2026-20963 — Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network.
Vulnerability details
- Affected productsSharePoint
- KEV remediation due2026-03-21
Exploiting threat actors
- Earth LuscaG1006