Patch tracker / KB5002856
KB5002856
Microsoft security update released 2026-04-14. Fixes 1 CVE.
Medium
Download KB5002856
Get the official update for KB5002856. The download and file size for each supported product are on the Microsoft Update Catalog page.
Update summary
Released
2026-04-14
CVEs fixed
1
Max CVSS
4.6
Severity
Medium
Exploitation and severity
Fixes 1 CVE. Most severe CVSS 4.6 (Medium). EPSS exploit probability up to 25%.
Among the top half of tracked Microsoft updates by EPSS exploit probability.
What to do
Elevated priority: high severity or a meaningful exploitation probability, sooner if an affected product is internet-facing. Senserva flags whether KB5002856 is missing on your devices.
CVEs fixed by this update
Affected products
- Microsoft SharePoint Enterprise Server 2016
- Microsoft SharePoint Server 2019
- Microsoft SharePoint Server Subscription Edition
See this and every Microsoft update ranked by real-world risk on the Microsoft Patch Tracker.