Microsoft has released security updates (SUs) for vulnerabilities found in:
Exchange Server 2013
Exchange Server 2016
Exchange Server 2019
IMPORTANT: Updates are released in a self-extrac...
Updated Aug 11, 2022
Version 8.0
Blog Post
LukasSMSFT
Microsoft
MicrosoftJS2022 Thanks for keeping us posted. Yes, this is a scenario which isn't supported as the AV acts (in your case) as a "Man-in-the-Middle" and this is what Extended Protection is actively trying to prevent.
spring8080 We announced the service model change (only 2 Cumulative Updates per year) back in April 2022. Please find the announcement here: https://techcommunity.microsoft.com/t5/exchange-team-blog/released-2022-h1-cumulative-updates-for-exchange-server/ba-p/3285026 .
You can also check our build number documentation: https://docs.microsoft.com/en-us/exchange/new-features/build-numbers-and-release-dates?view=exchserver-2019
Sreejith you say that you use this server to relay emails through it. Does it mean that you run the Exchange Edge Transport role on it?
If you run the Exchange Edge Transport Role --> No Extended Protection (see: https://microsoft.github.io/CSS-Exchange/Security/Extended-Protection/#enabling-extended-protection)
If you run only the Exchange Management Tools --> No Extended Protection
If you run a CAS or Multirole server --> Extended Protection