ProxyNotShell: Detecting CVE-2022-41040 and CVE-2022-41082, Novel Microsoft Exchange Zero-Day Vulnerabilities Actively Exploited in the Wild - SOC Prime
Tags
country: U.S. Virgin Islands
attack-pattern: Data Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID f4260297-4039-4702-b677-58af946516a4
Fingerprint b5111a03b21fddf7
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 30, 2022, 1:51 p.m.
Added to db Oct. 6, 2022, 10:02 a.m.
Last updated Nov. 15, 2024, 12:41 p.m.
Headline ProxyNotShell: Detecting CVE-2022-41040 and CVE-2022-41082, Novel Microsoft Exchange Zero-Day Vulnerabilities Actively Exploited in the Wild
Title ProxyNotShell: Detecting CVE-2022-41040 and CVE-2022-41082, Novel Microsoft Exchange Zero-Day Vulnerabilities Actively Exploited in the Wild - SOC Prime
Detected Hints/Tags/Attributes 19/2/2
Source URLs
Redirection Url
Details Source https://socprime.com/blog/cve-2022-41040-and-cve-2022-41082-detection-novel-microsoft-exchange-zero-day-vulnerabilities-actively-exploited-in-the-wild/
URL Provider
Details Provider Source level domain
Details socprime.com socprime.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 237 SOC Prime https://socprime.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 105 
cve-2022-41040
Details CVE 127 
cve-2022-41082