Microsoft Exchange Server October 2022 Zero-day Vulnerabilities (ProxyNotShell)

high Nessus Plugin ID 165705

Version 1.10

Jan 12, 2023, 11:00 PM

  • IAVM reference

Version 1.9

Jan 12, 2023, 6:19 PM

  • Exploit attributes ("Exploit framework core" set to "True")

Version 1.8

Dec 5, 2022, 10:02 PM

  • Reference

Version 1.7

Dec 2, 2022, 4:16 PM

  • CVSS metrics ("CVSSv2 score" changed from "8.5" to "9.0")
  • CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C")
  • Exploit attributes ("Exploit framework metasploit" set to "True")

Version 1.6

Nov 30, 2022, 4:19 PM

  • Plugin metadata (updated solution for CU:11)

Version 1.5

Nov 11, 2022, 3:54 PM

  • IAVM reference
  • STIG Severity

Version 1.3

Oct 6, 2022, 5:51 PM

  • CISA reference

Version 1.2

Oct 6, 2022, 3:53 PM

  • CVSS temporal metrics
  • Exploit attributes

* Changelogs are generally available for changes made after Nov 1, 2022