← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-33766 — Actively Exploited: Exchange Server (Microsoft)

Microsoft Exchange Server contains an information disclosure vulnerability which can allow an unauthenticated attacker to steal email traffic from target.

CVE IDCVE-2021-33766
VendorMicrosoft
ProductExchange Server
Vulnerability nameMicrosoft Exchange Server Information Disclosure
Date added2022-01-18
Remediation due2022-02-01
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Exchange Server contains an information disclosure vulnerability which can allow an unauthenticated attacker to steal email traffic from target.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →