CVE-2022-41076

Name of the Vulnerable Software and Affected Versions Microsoft Exchange versions prior to the fixed version

Description The vulnerability is related to insufficient input validation in the PowerShell component of Microsoft Exchange, allowing remote attackers to execute arbitrary code. This issue is also associated with a form of Privilege Escalation known as TabShell, which enables breaking out of the restricted PowerShell Sandbox after gaining access through OWASSRF.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.