Nov. 15, 2023, 6 a.m. |

ZDI: Published Advisories www.zerodayinitiative.com

This vulnerability allows remote attackers to relay NTLM credentials on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2023-36035.

attackers authentication credentials cve cves cvss exchange exploit input input validation microsoft microsoft exchange ntlm ntlm relay rating relay validation vulnerability zdi

More from www.zerodayinitiative.com / ZDI: Published Advisories

Information Security Engineers

@ D. E. Shaw Research | New York City

Security Engineer II - Vulnerability Analysis

@ Datadog | New York City, USA

Associate Lead Consultant - SIEM Solution Management Job

@ Yash Technologies | Hyderabad, TG, IN

Cyber Security Senior Manager/Associate Director

@ EY | Johannesburg, GT, ZA, 2146

Cloud Security Engineer

@ Hexagon US Federal | Chantilly, VA

Sr Analyst, Governance, Risk, and Compliance

@ Tucows | Canada