CVE-2022-41040 / 41082: Zero Day Microsoft Exchange Vulnerabilities
As described here, two critical zero day vulnerabilities in Microsoft Exchange 2013, 2016, and 2019 have been identified:
- CVE-2022-41040 is a Server-Side Request Forgery (SSRF) vulnerability.
- CVE-2022-41082 allows remote code execution (RCE) via PowerShell.
Essentially, CVE-2022-41040 can enable an already authenticated attacker to remotely trigger CVE-2022-41082; authenticated access to the Exchange Server is necessary to exploit either vulnerability.
Please see this knowledge base article for more information as well as steps you can take on LoadMaster today to mitigate these vulnerabilities for Exchange deployments.