Home
MEDIUM: 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C 16.0.0 (custom) before 16.0.5561.1001
affected
16.0.0 (custom) before 16.0.10417.20175
affected
16.0.0 (custom) before 16.0.19725.20434
affected
Description
External control of file name or path in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.
Problem types
CWE-73: External Control of File Name or Path
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2026-54108 (Microsoft SharePoint Server Spoofing Vulnerability)