https://news.excello.email/tags/cve-2026-42897/Recent content in Cve-2026-42897 on Daily DMARC NewsHugoen-USFri, 05 Jun 2026 08:00:00 +0000https://news.excello.email/posts/2026-06-05-exchange-cve-2026-42897-owa-spoofing-dmarc-defense/Fri, 05 Jun 2026 08:00:00 +0000https://news.excello.email/posts/2026-06-05-exchange-cve-2026-42897-owa-spoofing-dmarc-defense/<p>On May 14, 2026, Microsoft disclosed CVE-2026-42897, a spoofing vulnerability in on-premises Exchange Server affecting Outlook Web Access. Within 24 hours, CISA added it to the Known Exploited Vulnerabilities catalog. Within 15 days, the federal remediation deadline passed. As of today, there is still no permanent patch.</p> <p>The attack vector is an email.</p> <h2 id="what-cve-2026-42897-does">What CVE-2026-42897 Does</h2> <p>The vulnerability is a cross-site scripting flaw in Exchange Server&rsquo;s OWA component. Its CVSS score is 8.1, placing it in the high-severity tier. The attack chain is direct: an attacker sends a specially crafted email to a target who uses Outlook Web Access to read their mail. When the target opens that email in OWA, the malicious content triggers an XSS payload that executes arbitrary JavaScript in the victim&rsquo;s browser context.</p>