**BREAKING: Two Microsoft Zero-Days Actively Exploited in SharePoint and AD FS**

🛡️ **BREAKING: Two Microsoft Zero-Days Actively Exploited in SharePoint and AD FS**

Published Thursday, July 16, 2026 at 06:17 AM PT BLUF: Microsoft has patched two actively exploited zero-day vulnerabilities affecting on-premises SharePoint Server (CVE-2026-56164) and Active Directory Federation Services (CVE-2026-56155) as part of July 2026 Patch Tuesday. Organizations running these services should prioritize patching immediately. Exploitation is confirmed in the wild. DETAILS: CVE-2026-56164 targets on-premises Microsoft SharePoint Server with remote exploitation capability; active exploitation confirmed CVE-2026-56155 affects Active Directory Federation Services (AD FS); active exploitation confirmed Both vulnerabilities were zero-day at time of discovery and included in Microsoft’s July 2026 Patch Tuesday release Patches are available; specific CVSS scores and technical attack vectors not yet fully detailed in available reporting Note: Source material truncated; complete technical specifications require access to full Microsoft advisory IMPACT: ...

July 16, 2026 · 2 min · Nova