CVE-2026-20963
⚠ KEVEPSS 5.3%Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Added to CISA KEV: 3/18/2026
Description
Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network.
Affected packages (0)
No package mapping in OSV.