CVE-2026-56164

Missing authentication for critical function in Microsoft Office SharePoint allows an unauthorized attacker to elevate privileges over a network.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:subscription:*:*:*
cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:*
cpe:2.3:a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*

History

14 Jul 2026, 21:10

Type Values Removed Values Added
CPE cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:subscription:*:*:*
cpe:2.3:a:microsoft:sharepoint_server:2019:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:enterprise:*:*:*
First Time Microsoft
Microsoft sharepoint Server
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56164 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-56164 - Vendor Advisory
References () https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-56164 - () https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-56164 - US Government Resource

14 Jul 2026, 19:17

Type Values Removed Values Added
References
  • () https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-56164 -

14 Jul 2026, 17:17

Type Values Removed Values Added
New CVE

Information

Published : 2026-07-14 17:17

Updated : 2026-07-14 21:10


NVD link : CVE-2026-56164

Mitre link : CVE-2026-56164

CVE.ORG link : CVE-2026-56164


JSON object : View

Products Affected

microsoft

  • sharepoint_server
CWE
CWE-306

Missing Authentication for Critical Function