ProxyLogon SYSTEM RCE via Exchange Unified Messaging deserialization — chained with CVE-2021-26855 SSRF for full unauthenticated compromise. Apply March 2021 emergency patches and run Microsoft MSERT to detect webshells already deployed.
Microsoft Exchange Server remote code execution vulnerability due to insecure deserialization used by the Unified Messaging service. Part of the ProxyLogon family.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →