CVE numbers = CVE-2022-41040 and CVE-2022-41082 Microsoft is investigating two reported zero-day vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and
Read More
An Iranian actor, assessed to be government sponsored, is exploiting known CVEs against multiple sectors. The advisory, issued by the
Read More
CVE number – CVE-2021-33766 It was reported in March 2021 by researcher Le Xuan Tuyen of VNPT ISC, and it
Read More
CVE number – CVE-2021-31198 Microsoft Exchange Server OAB Arbitrary File Write Remote Code Execution Vulnerability (Pwn2Own) This vulnerability allows remote
Read More
UK joins likeminded partners to confirm Chinese state-backed actors were responsible for gaining access to computer networks via Microsoft Exchange
Read More
On April 13th 2021 Microsoft released a software update to mitigate significant vulnerabilities that affect on-premises Exchange Servers 2013, 2016,
Read More
Microsoft has released the Exchange On-premises Mitigation Tool (EOMT.ps1) that can automate portions of both the detection and patching process. Microsoft has
Read More
This is an update to an earlier report this month regarding Microsoft Exchange Server. Microsoft has released out-of-band security updates
Read More
Microsoft has issued several security updates for Microsoft Exchange Server to address vulnerabilities that have been used in limited targeted attacks. Due to the critical nature of these
Read More
CVE number – CVE-2020-16875 A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet
Read More