⚠ Actively exploited in ransomware campaigns
This vulnerability is on the CISA Known Exploited Vulnerabilities list and has been used in known ransomware attacks. CISA required action: Apply updates per vendor instructions.. Due date: 2021-11-17.
CVE-2021-26411
Severity
8.8HIGH
No vectorEPSS
92.5%
top 0.27%
CISA KEV
KEVRansomware
Added 2021-11-03
Due 2021-11-17
Exploit
Exploited in wild
Active exploitation observed
Affected products
Timeline
PublishedMar 11
KEV addedNov 3
KEV dueNov 17
Latest updateOct 18
CISA Required Action: Apply updates per vendor instructions.
Description
Internet Explorer Memory Corruption Vulnerability
Internet Explorer Memory Corruption Vulnerability