Advertisement
CRITICAL
Vulnerabilities
CVE-2026-42897: Microsoft Exchange OWA XSS Zero-Day Under Attack
Active Zero-Day XSS vulnerability, CVE-2026-42897, impacts Microsoft Exchange OWA, allowing mailbox compromise. No patch available.
Runtime Rebel Intel
5 min read·May 19, 2026
VU
CRITICAL
Vulnerabilities
Pwn2Own Berlin: Microsoft Exchange, Windows 11 Zero-Day Exploits
Zero-day vulnerabilities in Microsoft Exchange, Windows 11, and Red Hat Enterprise Linux demonstrated at Pwn2Own Berlin. Runtime Rebel details the impact.
Runtime Rebel Intel
4 min read·May 15, 2026
VU
CRITICAL
Vulnerabilities
CVE-2024-49040: Microsoft Exchange Server Spoofing Vulnerability
Microsoft warns of CVE-2024-49040, a zero-day spoofing vulnerability in Exchange Server exploited to bypass security filters and impersonate trusted senders.
Runtime Rebel Intel
4 min read·May 15, 2026
HIGH
Threat Intel
FamousSparrow Exploits Microsoft Exchange in Azerbaijani Energy Campaign
Bitdefender reveals a multi-wave intrusion by FamousSparrow targeting an Azerbaijani oil and gas firm via repeated Microsoft Exchange exploitation.
Runtime Rebel Intel
3 min read·May 13, 2026