VDB
CNVD-2026-07204
CNVD-2026-07204
PUBLISHED
CVSS 8.800000190734863 HIGH
Microsoft SharePoint是美国微软(Microsoft)公司的一套企业业务协作平台。该平台用于对业务信息进行整合,并能够共享工作、与他人协同工作、组织项目和工作组、搜索人员和信息。 Microsoft SharePoint存在远程代码执行漏洞,攻击者可利用该漏洞在系统上执行任意代码。
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft SharePoint Server Subscription Edition | 16.0.0 |
| microsoft | sharepoint_server_2019 | 16.0.0 |
| Microsoft | Microsoft SharePoint Server 2019 | 16.0.0 |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | 16.0.0 |
| microsoft | sharepoint_server_2016 | 16.0.0 |
| microsoft | sharepoint_server | 16.0.0 |
Exploit Intelligence
- CIRCL exploited: CVE-2026-20963 (circl-sighting)
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20963 (circl)
- Microsoft SharePoint Remote Code Execution Vulnerability (circl)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
- CIRCL seen: CVE-2026-20963 (circl-sighting)
…and 41 more exploits
Timeline
- Jan 13, 2026 CVE Published
- Jan 13, 2026 PoC Published
- Jan 13, 2026 PoC Published
- Jan 13, 2026 PoC Published
- Jan 14, 2026 PoC Published
- Mar 18, 2026 PoC Published
- Mar 18, 2026 PoC Published
- Mar 18, 2026 PoC Published
- Mar 19, 2026 PoC Published
- Mar 19, 2026 PoC Published
- Mar 19, 2026 PoC Published
- Mar 19, 2026 PoC Published