CVE-2022-41040 CVE-2022-41082 Zero-day vulnerabilitie

Affecting Microsoft Exchange Server vulnerability list of Ver.2013/ 2016/2019

vulnerabilities  allows remote code execution when Exchange PowerShell is accessible

Hacker authenticated access Exchange Server successfully exploit

Successfully exploit either vulnerability, and they can be used separately.

Mitigation: - AMSI  June 2021 Quarterly Updates for Exchange. It is highly recommended