Security News > 2025 > February > Critical RCE bug in Microsoft Outlook now exploited in attacks

Critical RCE bug in Microsoft Outlook now exploited in attacks

2025-02-06 18:17

CISA warned U.S. federal agencies on Thursday to secure their systems against ongoing attacks targeting a critical Microsoft Outlook remote code execution (RCE) vulnerability. [...]

News URL

https://www.bleepingcomputer.com/news/security/critical-rce-bug-in-microsoft-outlook-now-exploited-in-attacks/

#attack #critical #microsoft #outlook #RCE

Related news

Hackers exploit critical Aviatrix Controller RCE flaw in attacks (source)
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks (source)
New IOCONTROL malware used in critical infrastructure attacks (source)
CISA confirms critical Cleo bug exploitation in ransomware attacks (source)
Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks (source)
Hackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan Attacks (source)
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks (source)
CISA warns of critical Oracle, Mitel flaws exploited in attacks (source)
Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
Microsoft fixes bug causing Outlook freezes when copying text (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		377	51	1400	2876	173	4500

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.