Attackers exploit SharePoint flaw to run code on servers

Attackers exploit CVE-2026-20963, a deserialization vulnerability in SharePoint Server, allowing low-privilege users to execute code remotely and compromise servers. Affects versions before specific March 2024 patches. CISA confirms real-world attacks, urging immediate updates.