CVE-2021-33766

Microsoft Exchange Server contains an information disclosure vulnerability which can allow an unauthenticated attacker to steal email traffic from target. Vendor/Product: Microsoft Exchange Server. Added to CISA KEV 2022-01-18; required action: Apply updates per vendor instructions.