Summary:
- Microsoft has released security patches to address a zero-day vulnerability in Office that is being actively exploited by attackers in targeted attacks.
- The vulnerability, tracked as CVE-2023-23397, allows an attacker to gain remote access to a victim's system by tricking them into opening a malicious Office document.
- Cybersecurity experts recommend that users and organizations should apply the latest security updates from Microsoft as soon as possible to protect their systems from this critical vulnerability.