Reported Zero-day Vulnerabilities in Microsoft Exchange Server on 29 Sept. 2022
once again there is a security vulnerability in Exchange. Among other things, this article says the following:
"Authenticated attackers who can access PowerShell Remoting on vulnerable Exchange systems will be able to trigger RCE using CVE-2022-41082. Blocking the ports used for Remote PowerShell can limit these attacks.
We have a lot of rules stored in our firewall. Probably the "web rule" is meant here, through which all http or https traffic comes in or is it specifically about the access to the Exchange?
Is there anything else I can set on the Firebox to minimize the risk?