{"cve_id":"CVE-2026-20963","summary":"Deserialization of untrusted data in Microsoft Office SharePoint allows an unauthorized attacker to execute code over a network.","cvss":9.8,"cvss_version":3.0,"cvss_v2":null,"cvss_v3":9.8,"epss":0.06,"ranking_epss":0.90661,"kev":true,"propose_action":"Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network.","ransomware_campaign":"Unknown","references":["https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20963","https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-20963"],"published_time":"2026-01-13T18:16:24","cpes":["cpe:2.3:a:microsoft:sharepoint_server:-","cpe:2.3:a:microsoft:sharepoint_server:16.0.10417.20003","cpe:2.3:a:microsoft:sharepoint_server:16.0.17328.20246","cpe:2.3:a:microsoft:sharepoint_server:16.0.17328.20292","cpe:2.3:a:microsoft:sharepoint_server:16.0.17328.20362","cpe:2.3:a:microsoft:sharepoint_server:16.0.17928.20356","cpe:2.3:a:microsoft:sharepoint_server:16.0.17928.20396","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20172","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20286","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20396","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20424","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20508","cpe:2.3:a:microsoft:sharepoint_server:16.0.18526.20518","cpe:2.3:a:microsoft:sharepoint_server:16.0.19127.20100","cpe:2.3:a:microsoft:sharepoint_server:16.0.19127.20262","cpe:2.3:a:microsoft:sharepoint_server:16.0.19127.20338","cpe:2.3:a:microsoft:sharepoint_server:16.0.19127.20378","cpe:2.3:a:microsoft:sharepoint_server:2016","cpe:2.3:a:microsoft:sharepoint_server:2019"]}