Skip to content
The Nexus
SECURITYJun 10 · 13:44 UTCBLEEPING COMPUTERSergiu Gatlan

Microsoft patches Exchange Server zero-day exploited in attacks

Microsoft has patched a zero-day vulnerability in Exchange Server that allows threat actors to execute arbitrary JavaScript code through cross-site scripting (XSS) attacks targeting Outlook Web Access users. The vulnerability is actively exploited, prompting the release of a security update.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting