NETCROOK

Saturday 27 June 2026 01:49:45 GMT+02:00

#Exchange SSRF

Exchange’s Mail-App Doorway Turns Into a Patch-Window Risk

24 June 2026 14:58Vulnerabilities & Patch ManagementNorth America / USADEEPAUDIT

A newly circulating proof-of-concept around CVE-2026-45502 puts the spotlight on a lesser-known Exchange Web Services path and the operational cost of delayed remediation.

#CVE-2026-45502 | #EWS InstallApp | #Exchange SSRF

Exchange’s EWS Path Opens a Quiet SSRF Risk With Loud Consequences

24 June 2026 14:50Vulnerabilities & Patch ManagementNorth America / USANEONPALADIN

A public proof-of-concept for CVE-2026-45502 turns a mail server component into a reminder that server-trusted requests can become a dangerous pivot point.

#CVE-2026-45502 | #Microsoft Exchange | #EWS SSRF