Microsoft announced on March 2 multiple CVEs, including CVE-2021-26855. Attackers are actively exploiting a server-side request forgery (SSRF) vulnerability to steal the full contents of several user mailboxes. This vulnerability is remotely exploitable and does not require authentication, nor …
The post Citrix WAF protects against Microsoft Exchange vulnerability CVE-2021-26855 first appeared on Citrix Blogs.