Articles about CVE-2022-41040

Microsoft confirms two actively exploited zero-day vulnerabilities in Exchange Server

By Sofia Elizabella Wyciślik-Wilson
3 years ago
Microsoft logo on glass building

Microsoft has issued a security notice about two zero-day vulnerabilities with its own Microsoft Exchange Server. Versions 2013, 2016 and 2019 of the software are affected.

One vulnerability (CVE-2022-41082) allows for remote code execution when an attacker has access to PowerShell; the second (CVE-2022-41040) is a Side Request Forgery (SSRF) vulnerability. Both vulnerabilities are being exploited in the wild.

Continue reading

Recent Headlines

Use of AI-powered software testing doubles in the last year

Economic uncertainty adds to cyber-physical systems risk

After selling out in Japan, Casio’s $429 Moflin AI pet launches in US and UK

SparkyLinux 9 'Tiamat' arrives with updated kernel and software packages

Why the retail industry needs to rethink identity [Q&A]

One in four organizations victims of AI data poisoning

Microsoft reminds Office users about end of support

Most Commented Stories

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

17 Comments

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

17 Comments

As Windows 10 reaches end of life, Windows 11 is LOSING market share

14 Comments

The brilliant Windows 12 is everything Windows 11 isn't -- and the Microsoft OS we deserve

11 Comments

Age verification laws are killing web traffic

9 Comments

Forget Tiny11, Nano11 takes Windows 11 debloating to the next level

9 Comments

Why using a VPN is becoming more important than ever

8 Comments

Microsoft is rolling out Windows 11 25H2

5 Comments

BetaNews, your source for breaking tech news, reviews, and in-depth reporting since 1998.

© 1998-2025 BetaNews, Inc. All Rights Reserved. About Us - Privacy Policy - Cookie Policy - Sitemap.