Microsoft has alerted Windows users that hackers are exploiting a previously undisclosed zero-day vulnerability in all versions of the software.

Rated as critical, the vulnerabilities concern two unpatched remote code execution (RCE) vulnerabilities related to how Windows manages and renders fonts. These flaws can be exploited after a user is tricked into opening or previewing a document containing the malware, allowing hackers to remotely install malware on the device.

Source Article