ThreatCluster

Microsoft Office Vulnerability CVE-2026-21509 Under Active Exploitation

First seen 27 Jan 2026, 22:53 UTC Sophos 0% similarity 49

Article Content

Browse articles
ThreatCluster

A critical vulnerability (CVE-2026-21509) in Microsoft Office has been identified, allowing attackers to exploit the application's reliance on untrusted inputs for security decisions. This flaw enables the bypassing of Object Linking and Embedding (OLE) protections, potentially affecting numerous users. Immediate action is recommended to mitigate risks associated with this vulnerability.

ThreatCluster AI

Community

Browse all →