Microsoft fixes zero-day exploited for cyber espionage (CVE-2025-33053) - Help Net Security

Microsoft has fixed a zero-day vulnerability (CVE-2025-33053) exploited in the wild by the Stealth Falcon APT group to deliver espionage tools. The vulnerability, in WebDAV, was used to manipulate Windows file execution and evade detection. Adobe has also released updates for several products, prioritizing a fix for five vulnerabilities with a higher risk of being targeted.