WARNING New Unpatched Microsoft Exchange Zero Day Under Active Exploitation


Security experts have raised the alarm about previously unknown vulnerabilities in fully patched Microsoft Exchange servers that might be used by bad actors in actual assaults to execute remote code on vulnerable computers.

The warning was sent by the Vietnamese cybersecurity firm GTSC, which identified the flaws in August 2022 as part of its security monitoring and incident response activities. The two vulnerabilities have not yet been formally given CVE numbers. Read More…