CVE-2026-20963

CISA issued an advisory on March 18, 2026 urging agencies to patch two actively exploited vulnerabilities in Synacor Zimbra and Microsoft SharePoint. Deadlines and technical details are provided for federal agencies.