CVE-2021-42321: Microsoft Exchange Server Remote Code Execution

Microsoft Exchange Server Remote Code Execution Vulnerability. An authenticated attacker could leverage improper validation in cmdlet arguments within Microsoft Exchange and perform remote code execution.

• CISA KEV-listed (remediation due 2021-12-01)
• used in ransomware campaigns
• EPSS 93.6% (99.8% percentile)

Detection rules

• Possible Exploitation of Exchange RCE CVE-2021-42321 high

Browse the CVE database

Read the full analysis on IntelFusions