Patch your Microsoft Exchange deployments now, users warned

Cybersecurity researchers have revealed a proof-of-concept (PoC) code for an actively exploited excessive severity vulnerability in Microsoft Exchange servers that Microsoft has already patched within the November 2021 Patch Tuesday.

Successful exploitation of the vulnerability within the in style hosted email server, tracked as CVE-2021-42321, allows authenticated attackers to execute code remotely on Microsoft Exchange Server 2016 and Exchange Server 2019 installations.

Related Posts