Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHive ProHIVEPRO:F327ABE1BEFB40043AD5F33DA5692070
HistoryOct 13, 2022 - 12:15 p.m.

Did Patch Tuesday address the zero-day flaw in Microsoft Exchange

2022-10-1312:15:39
Hive Pro
www.hivepro.com
18
patch tuesday
microsoft exchange
zero-day flaws
cve-2022-41033
cve-2022-41043
elevation of privilege
information disclosure
proxynotshell

EPSS

0.001

Percentile

30.6%

JSON

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsoft addresses two new zero-day vulnerabilities tracked under CVE-2022-41033, an Elevation of Privilege vulnerability exploited in the wild. CVE-2022-41043 is an Information Disclosure vulnerability was publicly disclosed. Microsoft has not released security updates for two actively exploited zero-day vulnerabilities dubbed to ProxyNotShell.

Related

malwarebytes 1
nvd 2
attackerkb 1
cisa_kev 1
mscve 2
cve 2
prion 2
cvelist 2
cnvd 1
krebs 1
nessus 11
openvas 9
thn 1
qualysblog 1
kaspersky 3
avleonov 1
mskb 15
rapid7blog 1
malwarebytes
malwarebytes
Update now! October patch Tuesday fixes actively used zero-day...but not the one you expected
2022-10-12 17:45:00
nvd
nvd
CVE-2022-41033
2022-10-11 19:15:20
CVE-2022-41043
2022-10-11 19:15:21
attackerkb
attackerkb
CVE-2022-41033
2022-10-11 00:00:00
cisa_kev
cisa_kev
Microsoft Windows COM+ Event System Service Privilege Escalation Vulnerability
2022-10-11 00:00:00
mscve
mscve
Microsoft Office Information Disclosure Vulnerability
2022-10-11 07:00:00
Windows COM+ Event System Service Elevation of Privilege Vulnerability
2022-10-11 07:00:00
cve
cve
CVE-2022-41043
2022-10-11 19:15:21
CVE-2022-41033
2022-10-11 19:15:20
prion
prion
Information disclosure
2022-10-11 19:15:00
Privilege escalation
2022-10-11 19:15:00
cvelist
cvelist
CVE-2022-41043 Microsoft Office Information Disclosure Vulnerability
2022-10-11 00:00:00
CVE-2022-41033 Windows COM+ Event System Service Elevation of Privilege Vulnerability
2022-10-11 00:00:00
cnvd
cnvd
Microsoft Windows COM Event System Service privilege elevation vulnerability
2022-10-13 00:00:00
krebs
krebs
Microsoft Patch Tuesday, October 2022 Edition
2022-10-11 21:06:23
nessus
nessus
Security Updates for Microsoft Office Products (Oct 2022) (macOS)
2022-10-13 00:00:00
KB5018446: Windows Server 2008 Security Update (October 2022)
2022-10-11 00:00:00
KB5018479: Windows 7 / Windows Server 2008 R2 Security Update (October 2022)
2022-10-11 00:00:00
openvas
openvas
Microsoft Office 2019 Multiple Vulnerabilities (Oct 2022) - Mac OS X
2022-10-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5018454)
2022-10-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5018457)
2022-10-12 00:00:00
thn
thn
Microsoft Patch Tuesday Fixes New Windows Zero-Day; No Patch for Exchange Server Bugs
2022-10-12 07:07:00
qualysblog
qualysblog
October 2022 Patch Tuesday | Microsoft Releases 84 Vulnerabilities with 13 Critical, plus 12 Microsoft Edge (Chromium-Based); Adobe Releases 4 Advisories, 29 Vulnerabilities with 17 Critical.
2022-10-11 20:00:00
kaspersky
kaspersky
KLA20002 Multiple vulnerabilities in Microsoft Office
2022-10-11 00:00:00
KLA20001 Multiple vulnerabilities in Microsoft Products (ESU)
2022-10-11 00:00:00
KLA20000 Multiple vulnerabilities in Microsoft Windows
2022-10-11 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday October 2022: Exchange ProxyNotShell RCE, Windows COM+ EoP, AD EoP, Azure Arc Kubernetes EoP
2022-10-29 08:37:59
mskb
mskb
October 11, 2022—KB5018450 (Monthly Rollup)
2022-10-11 07:00:00
October 11, 2022—KB5018446 (Security-only update)
2022-10-11 07:00:00
October 11, 2022—KB5018454 (Monthly Rollup)
2022-10-11 07:00:00
rapid7blog
rapid7blog
Patch Tuesday - October 2022
2022-10-11 18:35:28

EPSS

0.001

Percentile

30.6%

JSON
Related for HIVEPRO:F327ABE1BEFB40043AD5F33DA5692070
malwarebytes1nvd2attackerkb1cisa_kev1mscve2cve2prion2cvelist2cnvd1krebs1nessus11openvas9thn1qualysblog1kaspersky3avleonov1mskb15rapid7blog1