all InfoSec news
Threat Advisory: Microsoft warns of actively exploited vulnerabilities in Exchange Server
Sept. 30, 2022, 9:16 p.m. | Unknown (noreply@blogger.com)
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
Cisco Talos has released new coverage to detect and prevent the exploitation of two recently disclosed vulnerabilities collectively referred to as "ProxyNotShell," affecting Microsoft Exchange Servers 2013, 2016 and 2019. One of these vulnerabilities could allow an attacker to execute remote code on the targeted server. Limited exploitation of these vulnerabilities in the wild has been reported. CVE-2022-41040 is a Server Side Request Forgery (SSRF) vulnerability, while CVE-2022-41082 enables Remote Code Execution (RCE) when PowerShell is accessible to the attackers. …
actively exploited advisory cve-2022-41040 cve-2022-41082 exchange exchange server microsoft microsoft exchange server threat threat advisory vulnerabilities
More from blog.talosintelligence.com / Cisco Talos Intelligence Group - Comprehensive Threat Intelligence
Rounding up some of the major headlines from RSA
2 weeks, 2 days ago |
blog.talosintelligence.com
Talos releases new macOS open-source fuzzer
2 weeks, 2 days ago |
blog.talosintelligence.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)