An actively exploited spoofing vulnerability in Microsoft SharePoint (CVE-2026-32201, CVSS 6.5) enables data exposure and modification. Affected versions are SharePoint Server 2016, 2019, and all versions prior to 16.0.19725.20210. The fix requires applying the update to version 16.0.19725.20210, as over 1,300 internet-exposed instances remain unpatched despite ongoing attacks.
Vulnerability Management , Patch/Configuration Management Actively exploited SharePoint spoofing bug continues to threaten over 1,300 instances April 23, 2026 Share By SC Staff (Adobe Stock) More than 1,300 internet-exposed Microsoft SharePoint servers remain vulnerable to ongoing intrusions weaponizing the zero-day spoofing flaw, tracked as CVE-2026-32201 , while fewer than 200 online SharePoint instances have been fixed since last week's Patch Tuesday release, BleepingComputer reports. North America accounted for nearly half of the vulnerable SharePoint servers, while Europe and Asia had the next highest number of exposures, according to findings from The Shadowserver Foundation. Attacks successfully exploiting CVE-2026-32201 were noted by Microsoft to potentially enable data exposure and modifications. More details on the method of exploitation and the perpetrators of abuse remain lacking. Such a development comes after federal civilian executive branch agencies were urged by the Cybersecurity and Information Security Agency to address the SharePoint flaw by Apr. 28. "This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise," said CISA in its Known Exploited Vulnerabilities catalog entry for the bug. SC Staff Related Vulnerability Management Discontinued D-Link routers subjected to Mirai botnet targeting SC Staff April 23, 2026 Security Affairs reports that vulnerable end-of-life D-Link DIR-823X routers impacted by the command injection flaw, tracked as CVE-2025-29635, have been targeted by Mirai botnet intrusions since early March, or about a year after the security issue was initially disclosed. Vulnerability Management Microsoft patches critical ASP.NET Core privilege escalation vulnerability SC Staff April 23, 2026 The vulnerability stems from a regression in specific versions of the Microsoft.AspNetCore.DataProtection NuGet packages. Data Security Apple patches iPhone notification bug after reports of deleted data recovery SC Staff April 23, 2026 The vulnerability, identified as CVE-2026-28950, was patched on April 22, 2026, in iOS 26.4.2 and iPadOS 26.4.2, as well as in iOS 18.7.8 and iPadOS 18.7.8. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bug Buffer Overflow Disassembly You can skip this ad in 5 seconds