Microsoft Exchange Server Multiple CVE's

Vendor: Microsoft

Product: Exchange Server 2010, 2013, 2016 & 2019

Date: 4th March 2021

Target: SecOps, SysOps, IT Managers, IT Directors

What's new

Microsoft has released patches for multiple different on-premises Microsoft Exchange Server zero-day vulnerabilities that are being exploited by a nation-state affiliated group.

How does this affect me?

  • These exploits would allow a malicious actor to silently steal data and potentially gain control of your network.
  • The exploit is most prominent in the web-facing Exchange Server components.
  • Customers using Office 365 Exchange Online are not affected by these CVE(s).
  • Customers using Exchange in Hybrid Mode with Exchange Online are affected by these CVE(s).

What do I need to do?

  • Immediately patch Exchange Server with the newly released patches from Microsoft.
  • Datcom will patch all Fully Managed customers.
  • If you have any questions please contact your Account Manager.

References

Get in touch

Call us on 0333 000 3210 or Email us solutions@datcom.co.uk

Latest news...