{"uuid": "e74f60a3-eae7-4c9e-8549-03468dcb526d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42321", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/91", "content": "Some notes about Microsoft Exchange Deserialization RCE (CVE-2021\u201342321)\n\n\ud83d\udc64 by Peterjson\n\nPost-Auth Deserialization RCE in Microsoft Exchange Server 2016 and 2019. The vulnerability occurs due to issues with the validation of cmdlet arguments\n\n\ud83d\udcdd Contents: \n\u2022 Intro\n\u2022 The Sink\n\u2022 The Source\n\u2022 Full Exploit\n\u2022 Improvement\n\nhttps://peterjson.medium.com/some-notes-about-microsoft-exchange-deserialization-rce-cve-2021-42321-110d04e8852", "creation_timestamp": "2021-11-22T15:04:04.000000Z"}