Exploit for #VU54702 Code Injection in Microsoft Exchange Server

Exploit for #VU54702 Code Injection in Microsoft Exchange Server

Published: 2021-09-12

Vulnerability identifier: #VU54702

Vulnerability risk: Low

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2021-31196

CWE-ID: CWE-94

Exploitation vector: Network

Exploits in database: 1

September 12, 2021
- ProxyVulns ([ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-31207 Exploit Chains.) [Github]

Impact: Code execution

Vulnerable software:
Microsoft Exchange Server
Server applications / Mail servers

Vendor: Microsoft