3 matches found
Exploit for Deserialization of Untrusted Data in Microsoft
LetsDefend-CVE-2022-41082-Exploitation-Attempt 🛡️ Incident...
Ransomware Hackers Using New Way to Bypass MS Exchange ProxyNotShell Mitigations
Threat actors affiliated with a ransomware strain known as Play are leveraging a never-before-seen exploit chain that bypasses blocking rules for ProxyNotShell flaws in Microsoft Exchange Server to achieve remote code execution RCE through Outlook Web Access OWA. "The new exploit method bypasses...
PT-2019-6062 · Zimbra · Zimbra Collaboration Suite
Name of the Vulnerable Software and Affected Versions: Zimbra Collaboration Suite versions 8.7.x through 8.7.11p9 Description: The issue is related to an XML External Entity injection XXE vulnerability in the mailboxd component of the Zimbra Collaboration Suite, specifically affecting the...