More exchange bugs because of course.. ## Tweets - https://twitter.com/thezdi/status/1592925234298224640 <blockquote class="twitter-tweet"><p lang="en" dir="ltr">Control Your Types or Get Pwned: Remote Code Execution in Exchange PowerShell Backend - <a href="https://twitter.com/chudyPB?ref_src=twsrc%5Etfw">@chudyPB</a> provides the details of CVE-2022-41040 and -41082. These were the <a href="https://twitter.com/hashtag/Exchange?src=hash&amp;ref_src=twsrc%5Etfw">#Exchange</a> bugs used in active attacks and recently patched. <a href="https://t.co/vEG63C2jKo">https://t.co/vEG63C2jKo</a></p>&mdash; Zero Day Initiative (@thezdi) <a href="https://twitter.com/thezdi/status/1592925234298224640?ref_src=twsrc%5Etfw">November 16, 2022</a></blockquote> ## Links - https://www.zerodayinitiative.com/blog/2022/11/14/control-your-types-or-get-pwned-remote-code-execution-in-exchange-powershell-backend