Vulnerability
CVE-2021-26855 is a server-side-request-forgery (SSRF) vulnerability in the Microsoft Exchange server.HTTPS connections are established to authenticate user access when exploited.
Mitigation / Precaution
We suggest you to install all required patches, and avoid untrusted connections by enclosing the Exchange server within a VPN to isolate port 443 from external connections.
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
