IOC Radar
TLP:WHITE1 IOC

CVE-2026-42897: Exchange Server OWA Spoofing Flaw Exploited via Crafted Email

SP
SOC Prime
Published May 15, 2026Original Report

Diamond Model

Attack Flow4 steps · MITRE ATT&CK mapped

Initial AccessTA0001·T1566
1/4
Phishing
ActionSend crafted email
Attacker sends a specially crafted email to a user.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise1

TypeIndicatorConfidenceScoreFirst Seen
CVECVE-2026-42897
exploitintel-blogmalware
High
59
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph1 total IOCs
CVE
CVE1REPORTCVE-2026-42897: Exchange S
scroll to zoom · drag to pan · click IOC to open