Critical Microsoft Exchange Flaw: What is CVE-2021-26855? | UpGuard

Hafnium exploited four Microsoft Exchange Server zero-day vulnerabilities beginning 6 January 2021, resulting in widespread compromises (≈60,000 organizations) via chained SSRF-to-RCE flaws, web shells and data exfiltration; Microsoft released patches on 2 March 2021 and the report provides IOC, detection, patching and CISA response guidance.