> TritonInfoSec News

Home / Mar 20, 2026 / Story

#6 BleepingComputer general March 19, 2026 at 10:06 UTC

Critical Microsoft SharePoint flaw now exploited in attacks

By Sergiu Gatlan

AI Summary

CISA added CVE-2026-20963, a critical Microsoft SharePoint remote code execution vulnerability patched in January, to its Known Exploited Vulnerabilities catalog after confirming active exploitation. Organizations must apply patches by April 9, 2026 according to the federal directive.

Read full article → https://www.bleepingcomputer.com/news/microsoft/cr…

Relevance score: 82.0/100

Sponsored

Protect Your Business

Expert cybersecurity solutions to safeguard your organization from evolving threats.

Get Protected →

# More from March 20

1
Feds Disrupt IoT Botnets Behind Huge DDoS Attacks Krebs on Security
2
Hundreds of millions of iPhones can be hacked with a new tool found in the wild Ars Technica Security
3
New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores BleepingComputer
4
FBI seizes Handala data leak site after Stryker cyberattack BleepingComputer
5
CISA urges US orgs to secure Microsoft Intune systems after Stryker breach BleepingComputer
7
Interlock ransomware gang exploited Cisco firewall zero-day weeks before disclosure: Amazon The Record
8
Russian hackers exploit Zimbra flaw in Ukrainian govt attacks BleepingComputer
9
Navia discloses data breach impacting 2.7 million people BleepingComputer
10
54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security The Hacker News