Storia in 2 fonti

Microsoft warns of Exchange zero-day flaw exploited in attacks

On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site scripting (XSS) while targeting Outlook on the web users.

Raccontata da

thehackernews.com

bleepingcomputer.com

venerdì 15 maggio 2026·thehackernews.com
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
CVE-2026-42897 is exploited in on-prem Exchange; crafted emails enable spoofing, forcing urgent mitigation.
venerdì 15 maggio 2026·bleepingcomputer.com
Microsoft warns of Exchange zero-day flaw exploited in attacks
On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site…

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

Microsoft warns of Exchange zero-day flaw exploited in attacks