Microsoft has discovered a small number of attacks aimed at remote code execution vulnerability in MSHTML that affects Windows. CISA issued a statement recommending users and businesses to evaluate Microsoft’s mitigations and solutions for CVE-2021-40444, a remote code execution vulnerability in Windows.
Rick Cole of the Microsoft Security Response Center, Haifei Li of EXPMON, and Dhanesh Kizhakkinan, Genwei Jiang, and Bryce Abdo of Mandiant were the first to uncover the issue, according to Microsoft.
Microsoft is aware of targeted attacks that use specially designed Microsoft Office documents to exploit this vulnerability.
To Read More: ZDNet
For more such updates follow us on Google News ITsecuritywire News.