CVE-2021-40444: Microsoft MSHTML Remote Code Execution Vulnerability.

Microsoft MSHTML Remote Code Execution Vulnerability. Microsoft MSHTML contains a unspecified vulnerability that allows for remote code execution.

• CISA KEV-listed (remediation due 2021-11-17)
• used in ransomware campaigns
• EPSS 94.3% (100.0% percentile)

Detection rules

• Suspicious Word Cab File Write CVE-2021-40444 high
• Potential CVE-2021-40444 Exploitation Attempt high
• Potential Exploitation Attempt From Office Application high

Browse the CVE database

Read the full analysis on IntelFusions