Microsoft said exploitation was 'less likely' ... but CISA just added SharePoint RCE to KEV list
Microsoft's prediction that attackers probably wouldn't rush to exploit a newly-patched SharePoint bug hasn't aged especially well. CISA has added CVE-2026-45659, a remote code execution flaw in on-pr