Microsoft has issued a critical warning regarding two zero-day vulnerabilities, CVE-2026-56155 and CVE-2026-56164, which have already been exploited in the wild. These vulnerabilities affect Active Directory Federation Services and Microsoft SharePoint Server, respectively, and allow for privilege escalation. Security experts emphasize the urgency of patching these issues, particularly CVE-2026-56155, as active exploitation outweighs higher CVSS scores and could lead to significant system compromise. AI
RANK_REASON This is a security advisory about exploited vulnerabilities in existing software, not a new product release or frontier research.
- Action1
- Active Directory Federation Services
- Adam Barnett
- Automox
- CVE-2026-56155
- CVE-2026-56164
- Jack Bicer
- Jon Levenson
- Microsoft
- Rapid7
AI-generated summary · Google Gemini · from 1 sources. How we write summaries →