Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Insufficient Granularity of Access Control Vulnerability (CVE-2026-40365)

Description

Insufficient granularity of access control in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

Remediation

References

Related Vulnerabilities

Internet Information Services Other Vulnerability (CVE-1999-0253)

PHP NULL Pointer Dereference Vulnerability (CVE-2020-7062)

MySQL CVE-2013-5860 Vulnerability (CVE-2013-5860)

WordPress Plugin WP Image Zoom Local File Inclusion (1.46)

WordPress Plugin Inline Related Posts Multiple Cross-Site Scripting Vulnerabilities (3.0.4)

Severity

High

Classification

CVE-2026-40365 CWE-1220 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities