CVE-2026-32201

Published Apr 14, 2026

Last updated 2 days ago

Exploit knownCVSS medium 6.5
Network
IoT
Server

Overview

Description
Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
Source
secure@microsoft.com
NVD status
Analyzed
Products
sharepoint_server

Risk scores

CVSS 3.1

Type
Primary
Base score
6.5
Impact score
2.5
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Severity
MEDIUM

Known exploits

Data from CISA

Vulnerability name
Microsoft SharePoint Server Improper Input Validation Vulnerability
Exploit added on
Apr 14, 2026
Exploit action due
Apr 28, 2026
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weaknesses

secure@microsoft.com
CWE-20
nvd@nist.gov
NVD-CWE-noinfo

Social media

Hype score
Not currently trending

  1. ⚡️ May "In the Trend of VM" (#27): Linux EoP (CVE-2026-31431), ActiveMQ RCE (CVE-2026-34197), SharePoint spoofing (CVE-2026-32201), Adobe Reader RCE (CVE-2026-34621) #TrendVulns #Linux #ActiveMQ #Microsoft #Adobe ➡️ https://t.co/4aiqSqJ6Ig https://t.co/w6uc5BlpwN

    @leonov_av

    25 May 2026

    69 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. SharePoint Spoofing Flaw (CVE-2026-32201) Now Exposed on 1,370 IPs Worldwide—CISA Adds to KEV. Microsoft SharePoint Spoofing Flaw Now Exposed on 1,370 IPs—CISA Adds CVE-2026-32201 to KEV

    @lyrie_ai

    24 May 2026

    42 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  3. Top 5 Trending CVEs: 1 - CVE-2026-20133 2 - CVE-2025-20333 3 - CVE-2026-32201 4 - CVE-2026-32210 5 - CVE-2026-25253 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    28 Apr 2026

    224 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Top 5 Trending CVEs: 1 - CVE-2023-33308 2 - CVE-2022-42475 3 - CVE-2026-32201 4 - CVE-2026-33827 5 - CVE-2024-3721 #cve #cvetrends #cveshield #cybersecurity https://t.co/4Fua3CAN6W

    @CVEShield

    22 Apr 2026

    129 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. CVE-2026-25254
  2. Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.CVE-2026-45659
  3. Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.167, a remote, unauthenticated denial of service (DoS) vulnerability affects Deskflow servers running with TLS enabled (the default). When any TCP peer connects to the listening port and its first bytes do not parse as a valid TLS ClientHello, SecureSocket::secureAccept enters its fatal-error branch and calls Arch::sleep(1) (a blocking 1-second sleep) on the multiplexer worker thread. That thread services every socket on the server, including established TLS clients delivering mouse motion, keyboard events, and clipboard updates. A single failed handshake therefore stalls input delivery to all connected screens for ~1 second, and a sustained drip of malformed connections (≥ 1/s) makes the server effectively unusable while the attack persists. This vulnerability is fixed in 1.26.0.167.CVE-2026-44296
  4. Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.CVE-2026-40367
  5. Insufficient granularity of access control in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.CVE-2026-40365

References

Sources include official advisories and independent security research.