Home

Exchange Privilege Elevation Vulnerability Addressed by Microsoft Patches

Tony Redmond
MVP

 

The recent exposure of a privilege elevation vulnerability that exists in the control Exchange has over Active Directory and EWS push notifications is fixed by cumulative updates for Exchange 2013, Exchange 2016, and Exchange 2019 and a roll-up update for Exchange 2010 SP3. These changes mark an architectural modification for Exchange, something that Microsoft is loathe to do outside major releases. Install the updates now!
https://www.petri.com/microsoft-patches-exchange-privilege-elevation-vulnerability

Related Conversations
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
Teams error code - 6
damnit95 in Office 365 on
4 Replies
Outlook (365) Need Password - Issue
Muhammad Ali Khan in Office 365 on
20 Replies
Accessing a shared mailbox from a mobile device
Hexsysadmins in Office 365 on
14 Replies
When this insider extension going to be available?
HotCakeX in Discussions on
2 Replies