On September 30, 2022, Microsoft announced security updates for two zero-day vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and 2019.  This article covers how to use the security OSINT tool to find servers with these vulnerabilities and a case study of an exploitable server. Two vulnerabilities have been discovered:  CVE-2022-41082 and CVE-2022-41040. If a user … Continue reading Detecting Microsoft Exchange Zero-day Vulnerabilities with the Security OSINT Tool