Forum Discussion
CVE-2025-53786 - Anyone knows what to do?
Good day,
there is the CVE-2025-53786 and even there is a lot of articles around about the security leak, it's not clear what to do exactly. A hotfix seems to be available for Exchange 2016 and 2019:
Released: April 2025 Exchange Server Hotfix Updates | Microsoft Community Hub
According to MS, https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53786, Exchange SE is affected. The Hotfix mentioned above does not apply to Exchange SE so whats the solution? KB5047155 is the very first version of Exchange SE. So can Exchange SE be affected and be the solution at the same time? I dont think so.
Can someone please tell what exactly to do on an Exchange SE server to close the leak?
Best Regards
You need to re-run the HCW in your environment to move to the dedicated Exchange Hybrid Application. My understanding is that it's not Exchange version specific, but you may have run the correct version of the HCW to move to this.
more information can be found here: https://office365itpros.com/2025/08/07/hybrid-connectivity-app-exo/
1 Reply
You need to re-run the HCW in your environment to move to the dedicated Exchange Hybrid Application. My understanding is that it's not Exchange version specific, but you may have run the correct version of the HCW to move to this.
more information can be found here: https://office365itpros.com/2025/08/07/hybrid-connectivity-app-exo/