1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Microsoft Exchange Server Security Feature Bypass Vulnerability

Known Exploited Vulnerabilities CVE-2021-31207

Microsoft Exchange Server Security Feature Bypass Vulnerability

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2021-31207 Microsoft Exchange Server Security Feature Bypass Vulnerability primary_impact T1565 Data Manipulation
Comments
This vulnerability is exploited via authentication bypass, allowing the adversary to write to files.
References
  1. https://www.rescana.com/post/critical-analysis-of-cve-2021-31207-bypassing-security-in-microsoft-exchange-server
  2. https://packetstormsecurity.com/files/163895/Microsoft-Exchange-ProxyShell-Remote-Code-Execution.html
CVE-2021-31207 Microsoft Exchange Server Security Feature Bypass Vulnerability exploitation_technique T1548.002 Bypass User Account Control
Comments
This vulnerability is exploited via authentication bypass, allowing the adversary to write to files.
References
  1. https://www.rescana.com/post/critical-analysis-of-cve-2021-31207-bypassing-security-in-microsoft-exchange-server
  2. https://packetstormsecurity.com/files/163895/Microsoft-Exchange-ProxyShell-Remote-Code-Execution.html