How to determine whether your organization is exposed
If you’re a BreachSight customer, you can determine whether your organization is exposed by heading to Vulnerabilities under BREACHSIGHT and then search for CVE-2021-26855. It will appear as a verified vulnerability with the subtitle Microsoft Exchange Server Remote Code Execution Vulnerability.
How to determine whether your vendors are exposed
If you’re a Vendor Risk customer, you can determine whether your vendors are exposed by heading to Portfolio Risk Profile under VENDOR RISK and click Apply filters in the top right corner of your screen. Once the side panel has appeared, use the Filter by CVE ID to search for CVE-2021-26855. If you don’t know how to filter the Portfolio Risk Profile, please see here.
Your screen will look similar to the example below.
Click on the down arrow to display the vendors who are believed to be running a vulnerable version of Microsoft Exchange. Once identified, we recommend that you use our remediation workflow to work with the identified vendors to apply the security patches immediately. Please see our article on how to request remediation from a vendor.