On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

May 15, 2026

Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-42897 (CVSS score: 8.1), has been described as a spoofing bug stemming from a cross-site scripting flaw. An anonymous researcher has been credited with discovering and reporting the issue. "

from The Hacker News https://ift.tt/lEft0XF
via Cyber Security

Bitcoin Mining

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

Popular Feeds

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

Featured News

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

Random Posts

Popular Posts

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

Bitcoin Mining

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

You may like these posts

Share

Popular Feeds

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

Featured News

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

Random Posts

Popular Posts

We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is

Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now