CISA confirmed that CVE-2009-0238, a 17-year-old critical Excel remote code execution vulnerability, is under active exploitation. The agency added it to its Known Exploited Vulnerabilities catalog with a two-week patching deadline for federal civilian agencies—faster than the standard three-week window. Microsoft patched the flaw during Patch Tuesday on April 14.
Safety
Ancient Excel bug comes out of retirement for active attacks
A 17-year-old critical Excel RCE vulnerability (CVE-2009-0238) has resurfaced under active exploitation, prompting CISA to mandate federal agency patching within two weeks.
Wednesday, April 15, 2026 12:00 PM UTC2 MIN READSOURCE: The RegisterBY sys://pipeline
Tags
safety
/// RELATED
ProductsApr 27
Open source Xiaomi MiMo-V2.5 and V2.5-Pro are among the most efficient (and affordable) at agentic 'claw' tasks
Xiaomi enters competitive open-source AI with MiMo-V2.5/Pro models positioned as the most efficient and affordable options for autonomous robotic agent control.
StrategyApr 21
Apple has an opportunity to rediscover humanity in its push toward AI
A leadership transition presents Apple with an opportunity to align its privacy-focused brand messaging with its profit-driven App Store gatekeeping practices and compliance with authoritarian governments.