The U.S. Cybersecurity and Infrastructure Security Agency (CISA) urges administrators to patch three SharePoint Server vulnerabilities that attackers are actively exploiting against Internet-exposed, on-premises SharePoint instances. Multiple outlets report that the guidance covers three flaws currently under active attack and emphasizes that two additional critical issues could further increase risk if they are not addressed. CISA’s notification indicates that the exploited vulnerabilities are being used to compromise vulnerable systems, prompting immediate remediation steps for affected environments. The reporting also describes two of the involved vulnerabilities as having been targeted as zero-days, underscoring that exploitation is ongoing and that the known issue timelines may be short. Taken together, the coverage highlights the need for organizations hosting on-premises SharePoint Server to apply available patches and mitigations promptly, especially where systems are reachable from the public internet.