ctipilot.ch

Microsoft Exchange Server SSRF (ProxyNotShell) — cited as initial-access vector in 2026-05-14 FamousSparrow deep dive; chained with CVE-2022-41082

cve · CVE-2022-41040

Coverage timeline
1
first 2026-05-14 → last 2026-05-14
Briefs
1
1 distinct
Sources cited
45
30 hosts
Sections touched
0
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-05-14CTI Daily Brief — 2026-05-14

Source distribution

  • microsoft.com6 (13%)
  • github.com5 (11%)
  • helpnetsecurity.com3 (7%)
  • bleepingcomputer.com2 (4%)
  • blog.talosintelligence.com2 (4%)
  • securelist.com2 (4%)
  • theregister.com2 (4%)
  • access.redhat.com1 (2%)
  • other22 (49%)

External references

NVD · cve.org · CISA KEV

All cited sources (45)

Items in briefs about Microsoft Exchange Server SSRF (ProxyNotShell) — cited as initial-access vector in 2026-05-14 FamousSparrow deep dive; chained with CVE-2022-41082

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.