Darkreading
Microsoft Addresses Six Actively Exploited Zero-Day Vulnerabilities
First seen 11 Feb 2026, 03:18 UTC
•



+58
•73% similarity
•45.3
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
On February 10, 2026, Microsoft released a security update addressing 59 vulnerabilities, including six zero-day flaws that were actively exploited prior to the patch. The vulnerabilities affect various Microsoft products, with three of them being security feature bypass flaws, allowing attackers to circumvent built-in protections. The affected CVEs were published and added to the CISA KEV list on the same day.
ThreatCluster AI
Timeline
2026-02-05
CVE-2026-24300 published
2026-02-10
CVE-2026-21519 published and added to CISA KEV
2026-02-10
CVE-2026-21510 published and added to CISA KEV
2026-02-10
CVE-2026-21533 published and added to CISA KEV
2026-02-10
CVE-2026-21525 published and added to CISA KEV
2026-02-10
CVE-2026-21513 published and added to CISA KEV
2026-02-10
CVE-2026-21514 published and added to CISA KEV
2026-02-10
Microsoft Patch Tuesday update released
2026-02-10
CVE-2026-21531 published