CVE-2025-9491

Details on CVE-2025-9491, a Windows LNK file zero-day vulnerability.

Chinese State-Linked Group Exploits Windows Zero-Day Against European Diplomats

Oct 31, 2025

—

by

Reza Rafati

in Cyber News & Updates

A China-linked threat actor, identified as UNC6384 (also known as Mustang Panda), is actively exploiting a Windows zero-day vulnerability, CVE-2025-9491, in targeted attacks against European diplomatic entities. The campaign aims to conduct cyber espionage, monitoring communications and exfiltrating sensitive data from compromised systems. This activity highlights the ongoing risk posed by unpatched vulnerabilities in critical…