The host is installed with Microsoft Exchange Server 2016 or 2019 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which fails to handle the NTLM client. Successful exploitation could allow attackers to relay a user's leaked Net-NTLMv2 hash against a vulnerable Exchange Server and authenticate as the user.