Description
Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
Published: 2026-06-09
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Improper limitation of a pathname to a restricted directory in Microsoft SharePoint allows an authorized attacker to execute arbitrary code via a path traversal flaw. The vulnerability can enable the attacker to run malicious code with the privileges of the affected SharePoint service, potentially compromising confidentiality, integrity, and availability of the site and underlying infrastructure.

Affected Systems

The flaw affects Microsoft SharePoint Enterprise Server 2016, SharePoint Server 2019, and SharePoint Server Subscription Edition. No specific update levels are listed, so any current installation of these products is potentially vulnerable.

Risk and Exploitability

The CVSS score of 6.5 indicates a moderate severity. Because the EPSS score is not available, the exploitation likelihood cannot be quantified; the vulnerability is not listed in the CISA KEV catalog. The flaw requires an authenticated user with permissions to supply a manipulated path, implying that attackers must first gain authorized access to the SharePoint environment. Once authenticated, the path traversal can be used to execute code remotely on the server.

Generated by OpenCVE AI on June 9, 2026 at 19:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Microsoft SharePoint to the latest available patch from the Microsoft update catalog.
  • Restrict the privileges of SharePoint service accounts to the minimum necessary, preventing execution of arbitrary paths.
  • Implement URL path validation and deny traversal characters (such as '../') in any custom SharePoint extensions or scripts.
  • Monitor SharePoint logs for anomalous file access or execution patterns and investigate any suspicious activity.

Generated by OpenCVE AI on June 9, 2026 at 19:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft sharepoint Server Subscription Edition
Vendors & Products Microsoft sharepoint Server Subscription Edition
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
Title Microsoft SharePoint Remote Code Execution Vulnerability
First Time appeared Microsoft
Microsoft sharepoint Server
Microsoft sharepoint Server 2016
Microsoft sharepoint Server 2019
Weaknesses CWE-22
CPEs cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:subscription:*:*:*
cpe:2.3:a:microsoft:sharepoint_server_2016:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:microsoft:sharepoint_server_2019:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft sharepoint Server
Microsoft sharepoint Server 2016
Microsoft sharepoint Server 2019
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C'}

Subscriptions

Microsoft Sharepoint Server Sharepoint Server 2016 Sharepoint Server 2019 Sharepoint Server Subscription Edition
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-10T10:20:50.176Z

Reserved: 2026-05-12T16:06:43.096Z

Link: CVE-2026-45454

cve-icon Vulnrichment

Updated: 2026-06-10T10:20:44.839Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-09T17:17:19.527

Modified: 2026-06-09T19:32:51.440

Link: CVE-2026-45454

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T11:15:05Z

Weaknesses