Vulnerability exploitation was spotted by several security companies. The attack was detected on November 29, 2018 and seems to be executed by a Ukrainian APT group UA-APT.
360 Core Security dubbed the attack "Operation Poison Needles".
The vulnerability was privately reported to Microsoft by Kaspersky Lab.
According to MITRE statement, the vulnerability has been exploited in the wild in November 2018.
The vulnerability was discovered during the resolution of a Cisco TAC support case and reported by Cisco PSIRT.
Vulnerability scanning SaaS service is online 3-rd generation vulnerability scanner with scheduled assessments and vulnerability subscription. You can use service to check security of your network perimeter.