AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2010-0249: Microsoft Internet Explorer Use-After-Free Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesMay 19, 2026CVE-2010-0249

Summary

Microsoft Internet Explorer has a use-after-free vulnerability (a memory safety bug where code tries to access data that has already been deleted), which could let remote attackers run arbitrary code on a victim's computer. This vulnerability is actively being exploited by attackers in the wild, and the affected version of Internet Explorer may no longer be supported by Microsoft.

Solution / Mitigation

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 90.1%

Patch Available

Yes

Exploit Maturity

🔥 Actively Exploited

Disclosure Date

May 19, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-416

CAPEC (Attack Pattern)

CAPEC-233

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2010-0249

First tracked: May 20, 2026 at 02:00 PM

Classified by LLM (prompt v3) · confidence: 95%