Mar 2026: Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2026-26106 Published on March 10, 2026
Microsoft SharePoint Server Remote Code Execution Vulnerability
Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
Weakness Type
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Products Associated with CVE-2026-26106
Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.
Affected Versions
Microsoft SharePoint Enterprise Server 2016:- Version 16.0.0 and below 16.0.5543.1000 is affected.
- Version 16.0.0 and below 16.0.10417.20102 is affected.
- Version 16.0.0 and below 16.0.19725.20076 is affected.