Microsoft Confirms Active Exploitation of Windows Shell Spoofing Vulnerability CVE-2026-32202

Microsoft updated its security advisory on Monday to confirm active exploitation in the wild of CVE-2026-32202, a high-severity spoofing vulnerability in Windows Shell with a CVSS score of 4.3. The flaw could allow attackers to access sensitive information and was patched as part of the company's Patch Tuesday updates. No specific threat actors, attack vectors, or affected Windows versions were disclosed in the revision. The vulnerability was initially addressed prior to the acknowledgment of its exploitation. The advisory did not provide additional details on the scope or impact of the attacks.