What makes CVE-2025-33053 particularly dangerous compared to other vulnerabilities?

CVE-2025-33053 is actively being exploited in the wild, meaning attackers are already using it in real-world attacks. It leverages .URL shortcut files that link to WebDAV servers to execute code, and Microsoft has confirmed exploit activity, making it a high-priority patch.

Should I be concerned about the Office 365 preview pane vulnerabilities if patches aren't available yet?

While the preview pane vulnerabilities are serious because they can trigger without user interaction, there are currently no known exploits in the wild. However, you should monitor for patch availability and consider disabling preview pane functionality as a temporary mitigation until Microsoft releases updates for the Office client.

June 2025 Patch Tuesday: Exploited WebDAV Flaw & Office Risks

Name: June 2025 Patch Tuesday: Exploited WebDAV Flaw & Office Risks
Uploaded: 2026-05-12T20:28:39-04:00
Duration: 1 min 43 s
Description: Tyler Reguly breaks down the key highlights from June’s Patch Tuesday: * CVE-2025-33053: Actively exploited vulnerability involving .url shortcut files and WebDAV. * Office 365 Preview Pane Risks: Multiple vulnerabilities could trigger on email open, b...

Fortra

05/12/2026

0 (0%)

Report Like Favorite

TL;DR

CVE-2025-33053 is actively exploited in the wild, involving malicious .URL shortcut files that link to WebDAV servers to achieve code execution—immediate patching is critical.
Four Microsoft Office 365 vulnerabilities are preview pane-affected, meaning exploits could trigger automatically when emails are opened without any user interaction required.
Microsoft 365 Office client patches are not yet available for the preview pane vulnerabilities, though no active exploits currently exist, creating a window of exposure to monitor.

Summary

Tyler Reguly, Associate Director of Security R&D at Fortra, provides a focused analysis of June 2025's Microsoft Patch Tuesday, highlighting two critical areas requiring immediate attention from security teams. The briefing covers an actively exploited vulnerability involving .URL shortcut files and WebDAV servers (CVE-2025-33053), which has been documented by Checkpoint researchers and requires urgent patching. Additionally, Reguly addresses four Microsoft Office 365 vulnerabilities that are preview pane-affected, meaning they could execute without user interaction when emails are opened. Notably, patches for the Microsoft 365 Office client are not yet available, creating a temporary exposure window that defenders should monitor. This concise update helps security practitioners prioritize their patching efforts for the month and understand the specific risks associated with each vulnerability class.

Chapters

0:00 - Introduction
0:13 - CVE-2025-33053 Actively Exploited
0:45 - Office 365 Preview Pane Vulnerabilities
1:34 - Closing

Key Quotes

0:18 "This is the one CVE that Microsoft listed as exploit detected."
0:30 "... a .URL shortcut file that links to a WebDAV server and allows for code execution."
1:06 "... if your preview is turned on, the exploit has a chance to run immediately without any interaction from you."

Categories:

» Data Protection

Tags:

Show more Show less

TL;DR

Summary

Chapters

Key Quotes

Action1: Vulnerability Digest--Patch Tuesday & Other Updates

Understanding the True Costs of DIY Data Classification vs. Buying Solutions

Stay Informed on the Latest Keepit Partner Developments – June 23

Generative AI Security: Preventing AI from Becoming a Data Breach Multiplier