Microsoft Addresses Six Actively Exploited Zero-Day Vulnerabilities

Microsoft Addresses Six Actively Exploited Zero-Day Vulnerabilities

First seen 11 Feb 2026, 03:18 UTC TenableThefastmodeFeeds.FeedburnerCybersecuritynewsTechnadu+58 73% similarity 45.3

Article Content

Browse articles
ThreatCluster

On February 10, 2026, Microsoft released a security update addressing 59 vulnerabilities, including six zero-day flaws that were actively exploited prior to the patch. The vulnerabilities affect various Microsoft products, with three of them being security feature bypass flaws, allowing attackers to circumvent built-in protections. The affected CVEs were published and added to the CISA KEV list on the same day.

ThreatCluster AI

Timeline

2026-02-05
CVE-2026-24300 published
2026-02-10
CVE-2026-21519 published and added to CISA KEV
2026-02-10
CVE-2026-21510 published and added to CISA KEV
2026-02-10
CVE-2026-21533 published and added to CISA KEV
2026-02-10
CVE-2026-21525 published and added to CISA KEV
2026-02-10
CVE-2026-21513 published and added to CISA KEV
2026-02-10
CVE-2026-21514 published and added to CISA KEV
2026-02-10
Microsoft Patch Tuesday update released
2026-02-10
CVE-2026-21531 published

Community

Browse all →