LetsDefend- SOC 175- PowerShell Found in Requested URL- (CVE-2022–41082)

Diagram of attacks using Exchange vulnerabilities CVE-2022–41040 and CVE-2022–41082. Font: https://www.microsoft.com/security/blog/2022/09/30/analyzing-attacks-using-the-exchange-vulnerabilities-cve-2022-41040-and-cve-2022-41082/
Font: AbuseIPDB
Font: Whatismyipaddress
Font: VirusTotal
  1. The use of the link above to access a component in the backend where the RCE could be implemented.

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store