There is a critical 0-Day exploit for Exchange already being exploited, which is pretty much the same as the "ProxyShell" vulnerability in March.
How can I check if the mitigation is already working with Snort or IPS rules?
There is also written (see "Temporary containment measures") how to create a rewrite rule to address the vulnerability, until a patch becomes available.
New protection released for Sophos Firewall for this:
IPS Signature Release Note V9.19.68 only adresses CVE-2022-41040What about CVE-2022-41082?
The updated XG IPS sig pack covers both CVE-2022-41040 & CVE-2022-41082
Why is that not mentioned in the IPS Signature Release Note V9.19.68?