URL has been copied successfully!
Microsoft Exchange Zero-Day Under Attack, No Patch Available
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Microsoft Exchange Zero-Day Under Attack, No Patch Available


Tags: , , , , , ,

CVE-2026-42897 stems from a cross-site scripting (XSS) vulnerability and can allow an attacker to compromise Outlook Web Access (OWA) mailboxes.

First seen on darkreading.com

Jump to article: www.darkreading.com/vulnerabilities-threats/microsoft-exchange-zero-day-no-patch

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Microsoft SharePoint zero-day breach hits on-prem servers
  2. Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework
  3. Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)
  4. January 2026 Microsoft Patch Tuesday: Actively exploited zero day needs attention