CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

The U.S. Cybersecurity and Infrastructure Security Agency added two Microsoft SharePoint flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. Federal Civilian Executive Branch (FCEB) agencies are required to remediate identified vulnerabilities by