Joint advisory highlights Microsoft Exchange and Fortinet vulnerabilities

An Iranian actor, assessed to be government sponsored, is exploiting known CVEs against multiple sectors. The advisory, issued by the

Read more

ProxyToken Exchange Server Vulnerability [CVE-2021-33766]

CVE number – CVE-2021-33766 It was reported in March 2021 by researcher Le Xuan Tuyen of VNPT ISC, and it

Read more

(Pwn2Own) Microsoft Exchange Server OAB Arbitrary File Write Remote Code Execution Vulnerability [CVE-2021-31198]

CVE number – CVE-2021-31198 Microsoft Exchange Server OAB Arbitrary File Write Remote Code Execution Vulnerability (Pwn2Own) This vulnerability allows remote

Read more

UK and allies hold Chinese state responsible for hacking Microsoft Exchange Servers

UK joins likeminded partners to confirm Chinese state-backed actors were responsible for gaining access to computer networks via Microsoft Exchange

Read more

Microsoft Exchange Server 2016 and 2019 Remote Code Execution Vulnerability

On April 13th 2021 Microsoft released a software update to mitigate significant vulnerabilities that affect on-premises Exchange Servers 2013, 2016,

Read more

Microsoft Releases Exchange On-premises Mitigation Tool

Microsoft has released the Exchange On-premises Mitigation Tool (EOMT.ps1) that can automate portions of both the detection and patching process. Microsoft has

Read more

Update – Microsoft Exchange Server Vulnerabilities

This is an update to an earlier report this month regarding Microsoft Exchange Server. Microsoft has released out-of-band security updates

Read more

Microsoft Releases Out-of-Band Security Updates for Exchange Server

Microsoft has issued several security updates for Microsoft Exchange Server to address vulnerabilities that have been used in limited targeted attacks.  Due to the critical nature of these

Read more

Microsoft Exchange Server Remote Code Execution Vulnerability [CVE-2020-16875]

CVE number – CVE-2020-16875 A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet

Read more

Microsoft Exchange Validation Key Remote Code Execution Vulnerability [CVE-2020-0688]

CVE number – CVE-2020-0688 In a blog post this week, cyber security firm Rapid7 revealed that over 350,000 Microsoft Exchange servers

Read more
%d bloggers like this: