🛡 H3lium@infosec.exchange/:~# :blinking_cursor:​<p>"⚠️ Critical EoP Flaw in Microsoft Exchange Server ⚠️"</p><p>A Critical Elevation of Privilege (EoP) vulnerability, CVE-2024-21410, in the Microsoft Exchange Server, demands immediate attention. Rated 9.8 on the CVSSv3 scale and tagged "Exploitation More Likely," this flaw could let attackers use NTLMv2 hashes for relay or pass-the-hash attacks. Exchange Server versions up to 2019 CU14 lack NTLM Relay Protection by default. Microsoft advises enabling this protection via a provided script that can be found in Microsoft’s advisory and urges installation of the latest update as a defense measure. </p><p>While CVE-2024-21410 remains unexploited for now AFAIK, its potential risk cannot be underestimated. </p><p>Tags: <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> <a href="https://infosec.exchange/tags/EoPVulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EoPVulnerability</span></a> <a href="https://infosec.exchange/tags/CVE2024" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE2024</span></a>-21410 <a href="https://infosec.exchange/tags/PatchManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PatchManagement</span></a> <a href="https://infosec.exchange/tags/NTLMRelay" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NTLMRelay</span></a> <a href="https://infosec.exchange/tags/ThreatPrevention" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatPrevention</span></a> 🛡️💻🔐</p><p>Source: <a href="https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-21410" rel="nofollow noopener" target="_blank">Microsoft Advisory</a></p>