https://hackingpassion.com/tags/cve-2026-21509/Recent content in CVE-2026-21509 on HackingPassion.com : root@HackingPassion.com-[~]HugoenTue, 27 Jan 2026 00:00:00 +0000https://hackingpassion.com/office-zero-day-cve-2026-21509/Tue, 27 Jan 2026 14:10:36 +0100https://hackingpassion.com/office-zero-day-cve-2026-21509/<p>Microsoft Office zero-day actively exploited. Every version from 2016 to 365, including LTSC 2021 and 2024, over 400 million users. Attackers bypass all the protections Microsoft built to stop malicious documents. Just open the file, and they are in. Microsoft pushed an emergency patch on a Sunday. 🧐</p> <p><strong>CVE-2026-21509. CVSS 7.8.</strong></p> <p>Someone sends a Word document, an Excel file, a PowerPoint. The target opens it. No macro warning pops up, no &ldquo;enable content&rdquo; button appears. The embedded object just executes and the attacker has access.</p>