Дата обнаружения
|
30/09/2022 |
Уровень угрозы
|
Critical |
Описание
|
Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities:
|
Эксплуатация
|
The following public exploits exists for this vulnerability: https://github.com/notareaperbutDR34P3r/vuln-CVE-2022-41082 https://github.com/bigherocenter/CVE-2022-41082-POC https://github.com/sikkertech/CVE-2022-41082 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |
Пораженные продукты
|
Microsoft Exchange Server 2016 Cumulative Update 23 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2022-41040 CVE-2022-41082 |
Оказываемое влияние
?
|
ACE
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Exchange Server |
CVE-IDS
|