NEW: Group Profiler — instant APT intel lookup. Try it →

← all advisories

CVE-2026-45659

Confirmed by 3 independent sources tracked by ThreatFilter. First reported 2026-07-01 00:00 UTC , most recent 2026-07-16 16:00 UTC.

MEDIUM 8.8 CISA KEV EXPLOITED microsoft

Corroboration timeline

Each row is the first time that source reported this CVE, so the lag column shows how long each took relative to the earliest report. Independent corroboration is a confidence signal that a single advisory cannot give you.

  1. cisa-kev 2026-07-01 00:00 UTC

    CVE-2026-45659 — Microsoft SharePoint Server: Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability

  2. thehackernews 2026-07-02 05:46 UTC +30h

    SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation

  3. tenable-advisories 2026-07-16 16:00 UTC +16d

    CVE-2026-32201, CVE-2026-45659, CVE-2026-56164: Frequently Asked Questions About Active Exploitation of Microsoft SharePoint Server Vulnerabilities

How this page is built

ThreatFilter ingests 50+ public threat-intelligence feeds. A page is published here only when at least 3 distinct sources report the same CVE — roughly 0.2% of the CVEs seen. Everything above is derived from those feeds; nothing is hand-written, and the timeline is the raw record of what each source published and when.

See the live advisory feed, the full source list, or the analyst tools.