CVE-2022-41080 - Microsoft Exchange Server Privilege Escalation Vulnerability
Project:Microsoft
Product:Exchange Server
Date Added:2023-01-10Due Date:2023-01-31
Vulnerability Name
Microsoft Exchange Server Privilege Escalation Vulnerability
Description
Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation. This vulnerability is chainable with CVE-2022-41082, which allows for remote code execution.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41080
https://nvd.nist.gov/vuln/detail/CVE-2022-41080