Exchange OWASSRF Exploited for Remote Code Execution, (Thu, Dec 22nd)

This post was originally published on this site

According to a post by Rapid7, they have observed Exchange server 2013, 2016 & 2019 being actively exploited for "a chaining of CVE-2022-41080 and CVE-2022-41082 to bypass URL rewrite mitigations that Microsoft provided for ProxyNotShell allowing for remote code execution (RCE) via privilege escalation via Outlook Web Access (OWA)."[1]

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.