Microsoft has released Security Updates (SUs) for vulnerabilities found in:
Exchange Server 2013
Exchange Server 2016
Exchange Server 2019
SUs are available in a self-extracting auto-elev...
Updated May 08, 2023
Version 22.0
Blog Post
LukasSMSFT Hello,
i'm running it as you said, the parameter I used is as follows;
Get-Mailbox | .\CVE-2023-23397.ps1 -Environment Onprem -DLLPath "C:\DLL\exchange.webservices.managed.api.2.2.1.2\lib\net35\Microsoft.Exchange.WebServices.dll" -EWSSERVERURL https://FQDN/EWS/Exchange.asmx -Credential email address removed for privacy reasons
The output gives a warning, but it seems to be checking again. Does it work correctly that way?
Exception setting "ImpersonatedUserId": "Cannot convert the "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId" value of type "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId" to type "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId"."
Scanning - of - mailboxes (currently: email address removed for privacy reasons
Unable to process mailbox email address removed for privacy reasons, Either you don't have proper impersonation rights or the mailbox is inaccessible. Inner Exception:
Exception setting "ImpersonatedUserId": "Cannot convert the "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId" value of type "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId" to type "Microsoft.Exchange.WebServices.Data.ImpersonatedUserId"."
No vulnerable item found
Couldn't Audit mailboxes: email address removed for privacy reasons