CVE-2022-41080: Microsoft Exchange Server Privilege Escalation

Microsoft Exchange Server Privilege Escalation Vulnerability. Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation. This vulnerability is chainable with CVE-2022-41082, which allows for remote code execution.

• CISA KEV-listed (remediation due 2023-01-31)
• used in ransomware campaigns
• EPSS 93.8% (99.9% percentile)

Detection rules

• Potential OWASSRF Exploitation Attempt - Proxy high
• Potential OWASSRF Exploitation Attempt - Webserver high
• OWASSRF Exploitation Attempt Using Public POC - Webserver critical
• OWASSRF Exploitation Attempt Using Public POC - Proxy critical

Browse the CVE database

Read the full analysis on IntelFusions