Microsoft Exchange Server Elevation of Privilege Vulnerability (CVE-2024-21410)

What is the Vulnerability?
Microsoft disclosed a critical security flaw in the Exchange Server. Tracked as CVE-2024-21410, the issue has been described as a privilege escalation vulnerability. This security flaw can let remote unauthenticated threat actors escalate privileges in NTLM relay attacks against vulnerable Exchange Servers. Microsoft reported that the flaw has been actively exploited in the wild.

What is the Vendor Solution?


Microsoft released a patch on Feb 13, 2024, as part of its Patch Tuesday updates. Please follow …

attacks can critical cve cve-2024-21410 elevation of privilege escalation exchange exchange server flaw issue microsoft microsoft exchange microsoft exchange server ntlm ntlm relay privilege privilege escalation privileges relay security security flaw server servers the exchange threat threat actors unauthenticated vulnerability vulnerable what is