Por un escritor de hombre misterioso
Behavior functioning as intended, Microsoft reportedly says, and offers mitigation advice instead
Beginner Guide To Exploit Server Side Request Forgery (SSRF) Vulnerability, by Muh. Fani Akbar
Microsoft Office Online Server Remote Code Execution - MDSec
Exchange Zero Day - CVE-2022-41040 and CVE-2022-41082
Microsoft Office Online Server: Unfixed RCE vulnerability – Born's Tech and Windows World
Microsoft Exchange 0 Day Cyberattack Explained: - The Sec Master
Exploiting CSRF on JSON endpoints with Flash and redirects, by Riyaz Walikar
ProxyNotShell: New vulnerabilities in Microsoft Exchange Server (CVE-2022-41040, CVE-2022-41082) (update)
New Microsoft Exchange Vulnerabilities Discovered: CVE-2022-41082 (RCE) & CVE-2022-41040 (SSRF)
RIFT: Detection capabilities for recent F5 BIG-IP/BIG-IQ iControl REST API vulnerabilities CVE-2021-22986, NCC Group Research Blog
Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082 – BGD e-GOV CIRT