THREATOPS
THREAT OPSCVEs › CVE-2026-21513

CVE-2026-21513 — Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft MSHTML Framework contains a protection mechanism failure vulnerability that could allow an unauthorized attacker to bypass a security feature over a network.

Vulnerability details

Exploiting threat actors

Related reporting