Information security
fromSecurityWeek
13 hours agoMicrosoft Warns of Exchange Server Zero-Day Exploited in the Wild
CVE-2026-42897 is a spoofing and XSS Exchange zero-day exploited via crafted emails, requiring immediate mitigations until a permanent patch is available.