Security News > 2025 > February > Critical RCE bug in Microsoft Outlook now exploited in attacks

Critical RCE bug in Microsoft Outlook now exploited in attacks

2025-02-06 18:17

CISA warned U.S. federal agencies on Thursday to secure their systems against ongoing attacks targeting a critical Microsoft Outlook remote code execution (RCE) vulnerability. [...]

News URL

https://www.bleepingcomputer.com/news/security/critical-rce-bug-in-microsoft-outlook-now-exploited-in-attacks/

#attack #critical #microsoft #outlook #RCE

Related news

Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
Microsoft fixes under-attack privilege-escalation holes in Hyper-V (source)
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation (source)
Microsoft shares temp fix for Outlook crashing when writing emails (source)
Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
SonicWall warns of SMA1000 RCE flaw exploited in zero-day attacks (source)
Week in review: 48k Fortinet firewalls open to attack, attackers “vishing” orgs via Microsoft Teams (source)
Microsoft Teams phishing attack alerts coming to everyone next month (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		382	52	1419	2917	176	4564

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.