CVE-2021-33766: Microsoft Exchange Server Information Disclosure. Microsoft

Microsoft Exchange Server Information Disclosure. Microsoft Exchange Server contains an information disclosure vulnerability which can allow an unauthenticated attacker to steal email traffic from target.

• CISA KEV-listed (remediation due 2022-02-01)
• EPSS 93.8% (99.9% percentile)

Detection rules

• CVE-2021-33766 Exchange ProxyToken Exploitation critical

Browse the CVE database

Read the full analysis on IntelFusions