CVE-2022-41082

Microsoft confirms two actively exploited zero-day vulnerabilities in Exchange Server

Microsoft has issued a security notice about two zero-day vulnerabilities with its own Microsoft Exchange Server. Versions 2013, 2016 and 2019 of the software are affected.

One vulnerability (CVE-2022-41082) allows for remote code execution when an attacker has access to PowerShell; the second (CVE-2022-41040) is a Side Request Forgery (SSRF) vulnerability. Both vulnerabilities are being exploited in the wild.

By Sofia Elizabella Wyciślik-Wilson - September 30, 2022

Recent Headlines

Over a third of organizations adjust security strategy for AI-driven threats

CVE-2022-41082

Microsoft confirms two actively exploited zero-day vulnerabilities in Exchange Server

Recent Headlines

Over a third of organizations adjust security strategy for AI-driven threats

Stardock releases Fences 6.20 with new Rollup options and desktop fixes

Microsoft has fixed that Windows 11 dark mode bug that has been annoying you

Animations used to trick users into infecting their PCs

Firewalla Orange is a pocket-sized WiFi 7 router with multi-gigabit firewall

Spotify is testing a new prompt-powered playlist feature

Meta is giving all US Instagram users control over the Reels algorithm

Most Commented Stories

Google shares its favorite Chrome extensions of 2025 as AI takes over the browser

Microsoft will let you remove AI Action from the Windows 11 context menu

Ashampoo announces Burning Studio 27 with smarter ripping and better audiobook tools

Opera brings desktop AI features to its Android app

Open-source BitTorrent app FrostWire 7 launches with rebuilt engine and zero ads

Microsoft is preparing to give the Windows 11 Run dialog a much-needed makeover

Google reveals Year in Search 2025

Tuxedo unveils Gemini 17 Gen4 Linux laptop for high performance workloads

NEWS

UNITED KINGDOM