M365 Change Tracker

← All changes · security · CVE-2026-45498

CVE-2026-45498LowImmediate

Microsoft Defender Denial of Service Vulnerability

Severity Low  ·  Urgency Immediate  ·  Exploited in the wild

Why it matters: Exploited in the wild — CISA fix-by 2026-06-03

Denial of Service · Low · CVSS 4 · Exploited in the wild. Affects: Microsoft Defender Antimalware Platform.

CVSS 4EPSS 63.1%Exploited in the wildCISA remediation due 2026-06-03 (passed 20d ago)Update published 2026-06-23Source updated 2026-06-23NVDCISA KEV

Affected: Microsoft Defender Antimalware Platform

Change history

2026-06-23 · First seen

View at Microsoft →