CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

CVE-2026-45454

mediumCVSS 6.5covered by 1 sourcefirst seen 2026-06-09
Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CSIRTS triage

What
Improper limitation of a pathname allows an authorized attacker to execute code.
Who is affected
Authorized users of Microsoft Office SharePoint are affected.
Urgency
Remediation is urgent due to the potential for remote code execution.
Action
Apply the latest security patch for Microsoft SharePoint.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch CVE-2026-45454

Get an email if CVE-2026-45454 is added to CISA KEV, gains public exploit code, or a new advisory cites it — max one per day, one-click unsubscribe.

Exploitation outlook

Advisory coverage (1)

External references

NVD record for CVE-2026-45454

CVE.org record

Embed the live status

CVE-2026-45454 live status badge — this badge updates automatically when the KEV or exploit status changes. How to embed it →

[![CVE-2026-45454 status](https://www.csirts.com/badge/CVE-2026-45454)](https://www.csirts.com/cve/CVE-2026-45454)