Did Patch Tuesday address the zero-day flaw in Microsoft Exchange

Threat Advisories

Did Patch Tuesday address the zero-day flaw in Microsoft Exchange

October 13, 2022
Threat Level
Red
Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

Microsoft addresses two new zero-day vulnerabilities tracked under CVE-2022-41033, an Elevation of Privilege vulnerability exploited in the wild. CVE-2022-41043 is an Information Disclosure vulnerability was publicly disclosed. Microsoft has not released security updates for two actively exploited zero-day vulnerabilities dubbed to ProxyNotShell.

Recent Posts

Join Our Newsletter 14,000+ subscribers and growing! Get top cybersecurity news delivered directly to your inbox.
Sign Up to Receive Our Weekly Threat Digest