Microsoft has released out-of-band security updates to address vulnerabilities affecting Microsoft Exchange Server 2013, 2016, and 2019.

A remote attacker can exploit three remote code execution vulnerabilities—CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065—to take control of an affected system and can exploit one vulnerability—CVE-2021-26855—to obtain access to sensitive information. These vulnerabilities are being actively exploited in the wild.

d-PIT encourages users and administrators to review the Microsoft blog post and apply the necessary updates or workarounds.

 

Latest News

URGENT - PrintNightmare Office Update is Available
Read more ...
URGENT - Phishing email re: Office365 Login Passwords
Read more ...
URGENT - Install Exchange Server updates now
Read more ...
The Importance Of Backing Up Your Data Offsite
Read more ...
Ransomware is on the rise!
Read more ...
Service Continuity Announcement: Coronavirus (Covid-19)
Read more ...
Google to phase out HTTP downloads
Read more ...
Windows 7 - End of Support
Read more ...

We use cookies on our website. Some of them are essential for the operation of the site, while others help us to improve this site and the user experience (tracking cookies). You can decide for yourself whether you want to allow cookies or not. Please note that if you reject them, you may not be able to use all the functionalities of the site.