CVE-2021-42321 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2021-42321

Microsoft | ExchangeAdded 2021-11-17Remediation Deadline 2021-12-01Active Ransomware Campaign

Microsoft Exchange Server Remote Code Execution Vulnerability

An authenticated attacker could leverage improper validation in cmdlet arguments within Microsoft Exchange and perform remote code execution.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-184

CWE-502

References

https://nvd.nist.gov/vuln/detail/CVE-2021-42321