Microsoft Exchange Server vulnerability CVE-2026-42897 under active exploitation
Cross-site scripting flaw in on-premise Exchange servers enables spoofing attacks via crafted emails.
Tag: microsoft-exchange
CISA Adds Microsoft Exchange XSS Vulnerability to KEV Catalog
CVE-2026-42897 joins the Known Exploited Vulnerabilities list following evidence of active exploitation in the wild.
Chinese Group Targets Azerbaijani Energy Firm via Exchange Flaws
FamousSparrow group conducted multi-wave attacks against oil and gas company over two-month period.