Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Microsoft security patch release for CVE-2026-42897

Security Patch Release
First reported
Last updated
Happening score
H score 44
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft released June 2026 Security Updates for Exchange Server 2016, Exchange Server 2019, and Exchange Server Subscription Edition (SE) to fix CVE-2026-42897, an actively exploited spoofing/XSS flaw affecting Outlook Web Access users. Administrators were told to deploy the updates as soon as possible and keep the temporary Exchange Emergency Mitigation Service (EEMS) protections in place. The release closes a high-severity browser-code-execution path while preserving mitigation coverage during rollout.

Related Happenings

Microsoft June 2026 Patch Tuesday record 206-vulnerability update

Security Patch Release
H score55 First: 10.06.2026 12:38 Last: 10.06.2026 12:38 Sources 1

About this happening: Microsoft shipped a **record 206-vulnerability** update for its software portfolio, including **three publicly disclosed flaws**. The release spans **Critical** and **Important**...

Open Happening

Microsoft June 2026 Patch Tuesday GreenPlasma and YellowKey fixes

Security Patch Release
H score15 First: 10.06.2026 02:11 Last: 10.06.2026 02:11 Sources 1

About this happening: **Microsoft** released **June 2026 Patch Tuesday** updates that fixed the **GreenPlasma** and **YellowKey** flaws, closing two previously disclosed issues in the Windows ecosystem...

Open Happening

Microsoft security patch release for CVE-2026-41091 and CVE-2026-45498

Security Patch Release
H score44 First: 21.05.2026 10:49 Last: 21.05.2026 10:49 Sources 1

About this happening: Microsoft rolled out security updates for Defender and related malware protection components to address two zero-days: CVE-2026-41091 and CVE-2026-45498. The fixes cover affected...

Latest development: 21.05.2026 12:52

Microsoft released patches for Microsoft Defender Antimalware Platform version 4.18.26040.7 to address CVE-2026-41091, a link-following privilege-escalation flaw that can let an authorized attacker elevate privileges locally to System, and CVE-2026-45498, a denial-of-service flaw. Microsoft said both vulnerabilities were publicly disclosed and exploited in the wild as zero-days. CISA added both flaws to its Known Exploited Vulnerabilities (KEV) list and urged federal agencies to patch them by June 3.

Open Happening

Microsoft Exchange CVE-2026-42897 mitigation advisory

Advisory/Mitigation
H score57 First: 15.05.2026 12:40 Last: 15.05.2026 12:40 Sources 1

How related: "An attacker could exploit this issue by sending a specially crafted email to a user. If the user opens the email in Outlook Web Access and certain interaction conditions are met, arbitrary JavaScript can be executed in the browser context," the Exchange Team said in mid-May, when Microsoft rolled out automatic temporary mitigation through the Exchange Emergency Mitigation Service (EEMS).

About this happening: **Microsoft** issued immediate mitigation guidance for **CVE-2026-42897**, reducing risk for **Exchange Server 2016, 2019, and Subscription Edition (SE)** on-premises servers that...

Latest development: 15.05.2026 15:35

Microsoft issued temporary mitigation guidance for CVE-2026-42897 while a patch is still in development, recommending the Exchange Emergency Mitigation (EM) Service, which is enabled by default and can be checked with the Exchange Health Checker script, or the Exchange On-premises Mitigation Tool (EOMT) for disconnected or air-gapped environments. Microsoft noted that the mitigations can disrupt features such as OWA Print Calendar and Inline images, and that servers older than March 2023 cannot receive new mitigations through EM Service.

Open Happening

Microsoft May 2026 Patch Tuesday release

Security Patch Release
H score38 First: 13.05.2026 13:36 Last: 13.05.2026 13:36 Sources 1

About this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...

Latest development: 01.06.2026 15:30

Belgium's Centre for Cybersecurity warned that CVE-2026-41089 in Windows Netlogon is being actively exploited in the wild after Microsoft patched the stack-based buffer overflow during the May 2026 Patch Tuesday. The flaw affects all currently supported Windows Server versions, including Windows Server 2025, and can let an unauthenticated attacker gain remote code execution on targeted domain controllers.

Open Happening

Timeline

  1. 10.06.2026 16:44 1 articles · 1h ago

    CISA adds CVE-2026-42897 to exploited-in-the-wild list

    Legal Policy Action Update

    The Cybersecurity and Infrastructure Security Agency added CVE-2026-42897 to its list of security flaws exploited in the wild and ordered U.S. government agencies to patch affected servers within two weeks, by May 29.

    Show sources
    Open in new tab
  2. 10.06.2026 16:44 2 articles · 1h ago

    Microsoft releases June 2026 Security Updates for CVE-2026-42897

    Mitigation Patch Update

    Microsoft released June 2026 Security Updates for Exchange Server 2016, Exchange Server 2019, and Exchange Server Subscription Edition (SE) to address CVE-2026-42897, an actively exploited spoofing and cross-site scripting flaw that can let remote attackers send a specially crafted email and execute arbitrary JavaScript in Outlook Web Access. Administrators were told to install the updates as soon as possible and keep the Exchange Emergency Mitigation Service (EEMS) mitigation in place for additional protection.

    Show sources
    Open in new tab