The Latest
CVE-2026-56155: Microsoft Active Directory Federation Services Insufficient Granularity Of Access Control Vulnerability Actively Exploited (CISA KEV)
A new vulnerability in Microsoft Active Directory Federation Services allows privilege escalation and is being actively exploited, prompting urgent mitigation.
CVE-2026-56164: Microsoft SharePoint Server Missing Authentication For Critical Function Vulnerability Actively Exploited (CISA KEV)
A critical vulnerability in Microsoft SharePoint (CVE-2026-56164) allows unauthorized privilege escalation and is actively being exploited, prompting urgent mitigation.