CVE-2021-26857

Description from NVD

Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412, CVE-2021-26854, CVE-2021-26855, CVE-2021-26858, CVE-2021-27065, CVE-2021-27078.

Information Acquisition Date:2021-12-08T17:54Z
CVSS 2.0: 6.8 MEDIUM CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:M/Au:N/C:P/I:P/A:P

NVD References

 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26857
     source:MISC
     tags:Patch    Vendor Advisory    

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Exchange(1 tweets) Oracle(1 tweets)

List of frequently cited URLs

URLNum of Times Referred to
http://vulmon.com/vulnerabilitydetails?qid=CVE-20211075
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...244
https://lists.astaro.com/ASGV9-IPS-rules.html14
https://www.praetorian.com/blog/reproducing-proxylogon-expl...8
https://github.com/GossiTheDog/scanning/blob/main/http-vuln...6
https://msrc-blog.microsoft.com/2021/03/02/multiple-securit...6
http://travaux.ovh.net/?do=details&id=493525
https://www.tenable.com/blog/cve-2021-26855-cve-2021-26857-...4
http://feedproxy.google.com/~r/Snort/~3/-LloCeZ-tNg/snort-r...4
https://kas.pr/468f3
https://twitter.com/search?src=sprv&q=CVE-2021-268573
https://cyber.dhs.gov/ed/21-02/3
https://proxylogon.com/3
https://www.microsoft.com/security/blog/2021/03/02/hafnium-...3
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...3
https://blog.cloudflare.com/protecting-against-microsoft-ex...3
https://techcommunity.microsoft.com/t5/exchange-team-blog/r...3

Information from Twitter

User URL Info Source Date
pareshborkar https://lnkd.in/dHSw2gnH Source pareshborkar     1604132754639458304 2022/12/18

List of frequently cited URLs

URLNum of Times Referred to
vulmon.com1075
alerts.vulmon.com244
lists.astaro.com14
www.praetorian.com8
github.com6
msrc-blog.microsoft.com6
travaux.ovh.net5
www.tenable.com4
feedproxy.google.com4
kas.pr3
twitter.com3
cyber.dhs.gov3
proxylogon.com3
www.microsoft.com3
msrc.microsoft.com3
blog.cloudflare.com3
techcommunity.microsoft.com3

Information from Twitter

User URL Info Source
pareshborkar lnkd.in Show Tweet
GitHub Search Results: Up to 10
NameURL
sirpedrotavares/Proxylogon-exploit https://github.com/sirpedrotavares/Proxylogon-exploit
cert-lv/exchange_webshell_detection https://github.com/cert-lv/exchange_webshell_detection
herwonowr/exprolog https://github.com/herwonowr/exprolog
sgnls/exchange-0days-202103 https://github.com/sgnls/exchange-0days-202103
WiredPulse/Invoke-HAFNIUMCheck.ps1 https://github.com/WiredPulse/Invoke-HAFNIUMCheck.ps1
soteria-security/HAFNIUM-IOC https://github.com/soteria-security/HAFNIUM-IOC
SCS-Labs/HAFNIUM-Microsoft-Exchange-0day https://github.com/SCS-Labs/HAFNIUM-Microsoft-Exchange-0day
Immersive-Labs-Sec/ProxyLogon https://github.com/Immersive-Labs-Sec/ProxyLogon
Yt1g3r/CVE-2021-26855_SSRF https://github.com/Yt1g3r/CVE-2021-26855_SSRF
DCScoder/Exchange_IOC_Hunter https://github.com/DCScoder/Exchange_IOC_Hunter
GitHub Search Results: Up to 10
NameURL
sirpedrotavares/Proxylogon-exploit github.com
cert-lv/exchange_webshell_detection github.com
herwonowr/exprolog github.com
sgnls/exchange-0days-202103 github.com
WiredPulse/Invoke-HAFNIUMCheck.ps1 github.com
soteria-security/HAFNIUM-IOC github.com
SCS-Labs/HAFNIUM-Microsoft-Exchange-0day github.com
Immersive-Labs-Sec/ProxyLogon github.com
Yt1g3r/CVE-2021-26855_SSRF github.com
DCScoder/Exchange_IOC_Hunter github.com
2023/01/28 Score : 1
Added Har-sia Database : 2021/03/03
Last Modified : 2023/01/28
Highest Scored Date : 2021/03/03
Highest Score : 56