Scan Template for ProxyLogon Released (CVE-2021-26855)

ProxyLogon (CVE-2021-26855) and related vulnerabilities (CVE-2021-26857, CVE-2021-26858, CVE-2021-27065) in Microsoft Exchange Server are currently among some of the most important vulnerabilities for organizations to address amidst mass exploitation attempts by threat actors. To help our customers more effectively scan for these flaws, a scan template has been released for Tenable products.

The “ProxyLogon : MS Exchange” scan template can be found when creating a new scan. The purpose of this scan template is to help organizations quickly scan for these four CVEs across their enterprise. The template allows you to input Windows SMB credentials for the plugins that require them. Additionally, a remote check plugin is included and does not require any credentials. However, we strongly recommend providing credentials in order to see additional results by the credentialed plugins included in the scan template.

For more information about these vulnerabilities, including the availability of patches and Tenable product coverage, please visit our blog.