Lucene search
+L

5 matches found

0day.today
0day.today
added 2021/07/22 12:0 a.m.129 views

Microsoft Exchange Server Unpublished Pre-Authentication Remote Code Execution Exploit

Description First, IT'S NOT PROXYLOGON. IT'S NOT PROXYLOGON. IT'S NOT PROXYLOGON. It's an unpublished vulnerability found by myself. It's not exploited in the wild and there's no exploit code on the Internet. About The Vulnerability It's a exploit chain utilizing pre-auth SSRF + post-auth EoP +...

9.8CVSS0.7AI score0.83214EPSS
Exploits4
OSV
OSV
added 2021/04/13 8:15 p.m.2 views

CVE-2021-28480

Microsoft Exchange Server Remote Code Execution Vulnerability...

9.8CVSS5.9AI score0.71425EPSS
Exploits3References1
CVE
CVE
added 2021/04/13 7:33 p.m.406 views

CVE-2021-28480

CVE-2021-28480 is an Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources confirm it affects Exchange Server (2013/2016/2019) via a remote RCE with network access and no user interaction, indicating a pre-auth exploitation vector. Public PoCs/exploits exist in HoneyPoC...

10CVSS9.3AI score0.71425EPSS
In wildExploits3References1Affected Software1
Kaspersky
Kaspersky
added 2021/04/13 12:0 a.m.49 views

KLA12137 Multiple vulnerabilities in Microsoft Exchange Server

Remote code execution vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-28480 CVE-2021-28482 CVE-2021-28483 CVE-2021-28481 Exploitation Public exploits exist for this vulnerability. Malwa...

10CVSS9.9AI score0.83214EPSS
Exploits4References8
NCSC
NCSC
added 2021/04/13 12:0 a.m.5 views

Vulnerabilities fixed in Microsoft Exchange Server

Vulnerabilities have been fixed in Microsoft Exchange Server. A malicious party could potentially exploit the vulnerabilities to execute arbitrary code on the system. |----------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...

10CVSS7.1AI score0.83214EPSS
Exploits4
Rows per page
Query Builder