General Advisory: Microsoft MSHTML Remote Code Execution Vulnerability
Microsoft has released details, mitigations, and workarounds for a MSHTML Remote Code Execution Vulnerability being tracked as CVE-2021-40444.
This vulnerability is known to be exploited in the wild, and it has not been patched with a Windows update as of 9/7/2021.
System administrators are urged to review the guidance and apply mitigations to avoid potential exploitation.
CVE-2021-40444: Microsoft MSHTML Remote Code Execution Vulnerability