URL has been copied successfully!
CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day


Tags: , , , , ,

Microsoft warned that attackers are exploiting a new Exchange Server zero-day vulnerability, tracked as CVE-2026-42897, in the wild. Microsoft warned that threat actors are actively exploiting a new Exchange Server zero-day vulnerability tracked as CVE-2026-42897 (CVSS score 8.1). The vulnerability is an improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Exchange […]

First seen on securityaffairs.com

Jump to article: securityaffairs.com/192204/security/cve-2026-42897-microsoft-confirms-active-exploitation-of-exchange-server-zero-day.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Microsoft fixed two zero-day bugs exploited in malware attacks
  2. Critical Microsoft Zero-Day Vulnerability Exploited in the Wild for Over a Year
  3. Threat Actors Exploit Microsoft Help Index File to Deploy PipeMagic Malware
  4. Cybersecurity Snapshot: AI Security Skills Drive Up Cyber Salaries, as Cyber Teams Grow Arsenal of AI Tools, Reports Find