{"uuid": "c8441aa2-3e9c-4b01-a953-c8e8665ab32e", "vulnerability": {"vulnId": "CVE-2022-41080", "altId": []}, "gcve": {"origin_uuid": "caeb2787-0d58-4236-9039-7c86c3e566f3", "gna": 1, "object_uuid": "c8441aa2-3e9c-4b01-a953-c8e8665ab32e"}, "status": {"exploited": true, "status_reason": "confirmed", "status_updated_at": "2023-01-10T00:00:00+00:00"}, "characteristics": {}, "timestamps": {"asserted_at": "2023-01-10T00:00:00Z", "recorded_at": "2026-06-19T12:44:49Z", "first_seen_at": "2023-01-10T00:00:00Z"}, "scope": {"notes": "KEVIntel entry: Microsoft Exchange Server Elevation of Privilege Vulnerability | Affected: Microsoft / Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 12, Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 11, Microsoft Exchange Server 2016 Cumulative Update 22 | CVSS: 8.8 (HIGH) | Used in malware: yes | Not yet in CISA KEV: False"}, "evidence": [{"type": "public_report", "source": "kevintel", "signal": "confirmed_compromise", "confidence": 0.7, "details": {"feed": "KEVIntel (kevintel.com)", "title": "Microsoft Exchange Server Elevation of Privilege Vulnerability", "vendor": "Microsoft", "product": "Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 12, Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 11, Microsoft Exchange Server 2016 Cumulative Update 22", "added_date": "2023-01-10T00:00:00.000Z", "cvss_score": 8.8, "epss_score": null, "cvss_severity": "HIGH", "epss_percentile": null, "used_in_malware": "yes", "ahead_of_cisa_kev": null, "not_yet_in_cisa_kev": false}}], "references": [{"id": "CVE-2022-41080", "url": "https://www.cve.org/CVERecord?id=CVE-2022-41080"}, {"id": "kevintel", "url": "https://kevintel.com/vuln/CVE-2022-41080"}]}