By Shivesh Kumar

Two new Exchange zero-day flaws are under attack, but Microsoft has no imminent cure.

1

image source = google

Microsoft said hackers are exploiting two unpatched Exchange Server zero-day vulnerabilities.

By Shivesh Kumar

2

image source = google

GTSC found the issues while responding to a customer's cybersecurity problem.

By Shivesh Kumar

3

image source = google

The two zero-days were exploited in attacks on customers' environments in early August 2022.

By Shivesh Kumar

4

image source = google

Microsoft's Security Response Center (MRSC) listed the two vulnerabilities as CVE-2022-41040 and CVE-2022-41082.

By Shivesh Kumar

5

image source = google

1. PowerShell access permits remote code execution on a vulnerable server.

By Shivesh Kumar

6

image source = google

Microsoft has confirmed limited targeted attacks leveraging the two vulnerabilities.

By Shivesh Kumar

7

image source = google

Microsoft hasn't provided any specifics on the assaults and refuses to comment.

By Shivesh Kumar

8

image source = google