What is the CVSS score of CVE-2026-45484?

CVE-2026-45484 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.7%.

Which versions of Microsoft SharePoint are affected by CVE-2026-45484?

A privilege escalation vulnerability in Microsoft Office SharePoint (CVE-2026-45484, CVSS 8.8) allows authenticated users with low-privileged accounts to escalate their access to higher privilege…. A patch is available.

How to fix or mitigate CVE-2026-45484?

24 hours: Identify and document all SharePoint instances and users with low-privileged accounts; enable detailed audit logging for deserialization events and privilege escalation attempts. 7 days: Restrict SharePoint access to only essential personnel where operationally feasible; audit low-privileged accounts and disable unnecessary access. 30 days: Monitor Microsoft security advisories for patch availability (CVE-2026-45484); apply patch immediately upon release; conduct post-patch security review of SharePoint privilege changes.

Microsoft SharePoint CVE-2026-45484

EUVD-2026-35581 HIGH

Deserialization of Untrusted Data (CWE-502)

2026-06-09 secure@microsoft.com

GHSA-v99j-98xx-cvgv

Microsoft Deserialization Sharepoint Server

8.8

CVSS 3.1 · NVD

Temporal: 7.7

Severity by source

NVD PRIMARY

8.8 HIGH

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ENISA EUVD

HIGH

qualitative

CIRCL (temporal)

7.7 HIGH

cvss

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch available

Jun 09, 2026 - 19:03 EUVD

Analysis Generated

Jun 09, 2026 - 18:20 vuln.today

CVE Published

Jun 09, 2026 - 17:17 nvd

HIGH 8.8

DescriptionNVD

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network.

AnalysisAI

Privilege escalation in Microsoft Office SharePoint allows an authenticated network attacker to elevate privileges by submitting maliciously crafted serialized data that the server deserializes without proper validation. The CVSS 8.8 score reflects high impact across confidentiality, integrity, and availability combined with low attack complexity, though the PR:L requirement means the attacker must already hold at least a low-privileged SharePoint account. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Obtain low-privileged SharePoint credential

Delivery

Authenticate to web front-end

Exploit

Send crafted serialized payload to vulnerable endpoint

Execution

Trigger .NET gadget chain during deserialization

Persist

Execute code as SharePoint app pool identity

Impact

Access farm data and pivot laterally

Access

Obtain low-privileged SharePoint credential

Delivery

Authenticate to web front-end

Exploit

Send crafted serialized payload to vulnerable endpoint

Execution

Trigger .NET gadget chain during deserialization

Persist

Execute code as SharePoint app pool identity

Impact

Access farm data and pivot laterally

Vulnerability AssessmentAI

Exploitation	The attacker must hold valid authenticated credentials to the target SharePoint instance (CVSS PR:L) and must have network reachability to a SharePoint web front-end endpoint that accepts and deserializes user-supplied data - in most deployments that means any account with at least Contribute or Read on any site collection plus HTTPS access to the farm. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS vector (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) signals a realistically exploitable, high-impact network attack with one notable gating factor: PR:L means the attacker needs a valid low-privileged SharePoint identity, which in many enterprises is broadly held by any authenticated employee. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker who has obtained or phished a standard SharePoint user credential authenticates to an internet-facing SharePoint site and submits an HTTP request to a vulnerable endpoint with a crafted serialized .NET object that triggers a gadget chain during deserialization. Execution occurs in the SharePoint application pool context, giving the attacker the privileges of the SharePoint farm service account - typically enough to read all site content, plant a webshell, harvest the machine key, and move laterally to other farm servers. …
Remediation	Patch availability per vendor advisory should be confirmed via the MSRC entry at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45484, which will list the corresponding security update KB articles per SharePoint edition; exact fix build numbers were not provided in the input data and must be retrieved from that advisory before deployment. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

24 hours: Identify and document all SharePoint instances and users with low-privileged accounts; enable detailed audit logging for deserialization events and privilege escalation attempts. …

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2026-45484 vulnerability details – vuln.today

Back

Microsoft SharePoint CVE-2026-45484

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Share

External POC / Exploit Code