github-actions[bot]
commented
2 years ago This issue is stale because it has been open 1 day with no activity. Remove stale label or comment or this will be closed in 1 day.
Closed github-actions[bot] closed 2 years ago
github-actions[bot]
commented
2 years ago This issue is stale because it has been open 1 day with no activity. Remove stale label or comment or this will be closed in 1 day.
github-actions[bot]
commented
2 years ago This issue was closed because it has been stale with no activity.
Nicknamed ProxyNotShell, a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery (SSRF) vulnerability CVE-2022-41040 and a second vulnerability, CVE-2022-41082 that allows Remote Code Execution (RCE) when PowerShell is available to unidentified attackers. Based on ProxyShell, this new zero-day abuse risk leverage a chained attack similar to
https://thehackernews.com/2022/10/proxynotshell-new-proxy-hell.html