This plugin detects the potential presence of a web shell in selected directories and this can be indicative that the host might have been exploited with CVE-2022-41040 / CVE-2022-41082. It is recommended that the results are manually verified and appropriate remediation actions taken.
Note that Nessus has not tested for this issue but has instead looked for files that could potentially indicate compromise.
Binary data exchange_cve-2022-41040_ioc.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | exchange_server | cpe:/a:microsoft:exchange_server |