CVE-2026-21509 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
35
occurrences
First Seen
January 26, 2026
Last Seen
March 26, 2026

CVE-2026-21509 is a vulnerability tracked across 14 threat clusters and 35 intelligence report mentions on ThreatCluster. First observed January 26, 2026; most recent activity March 26, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities — Trendmicro · March 26, 2026
  • Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities — Trendmicro · March 26, 2026
  • Pawn Storm Campaign Deploys PRISMA, Targets Government and Critical Infrastructure Entities — Trendmicro · March 26, 2026
  • Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities — Feeds.Trendmicro · March 26, 2026
  • Sednit reloaded: Back in the trenches — Welivesecurity · March 10, 2026
  • Operation MacroMaze: APT28 Exploits Microsoft Office Macros and Webhook[.]site for Spear ... — Rescana · February 24, 2026
  • Fancy Bear Hackers Exploiting Microsoft Zero — Cybersecuritynews · February 10, 2026
  • Hackers Exploit Zero-Day Vulnerability in Microsoft Office for Attacks — Uk.News.Yahoo · February 4, 2026

CVSS v3.1 Breakdown