⚠ Actively exploited in ransomware campaigns
This vulnerability is on the CISA Known Exploited Vulnerabilities list and has been used in known ransomware attacks. CISA required action: Apply updates per vendor instructions.. Due date: 2021-12-01.
CVE-2021-42321
Severity
8.8HIGH
EPSS
93.6%
top 0.16%
CISA KEV
KEVRansomware
Added 2021-11-17
Due 2021-12-01
Exploit
Exploited in wild
Active exploitation observed
Affected products
Timeline
PublishedNov 10
KEV addedNov 17
KEV dueDec 1
Latest updateMay 24
CISA Required Action: Apply updates per vendor instructions.
Description
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9
Affected Packages5 packages
Patches
🔴Vulnerability Details
4🔍Detection Rules
3Suricata
▶
Suricata▶
ET EXPLOIT Possible Microsoft Exchange Server Remote Code Execution Inbound (CVE-2021-42321)↗2021-11-22
Suricata
▶