======Microsoft - Exchange Server - Security======

[[https://aka.ms/ExchangeUpdateWizard|Exchange Security Update Helper]]

See [[https://msrc.microsoft.com/update-guide/|Microsoft Security Response Center (MSRC) - Security Update Guide]] and filter on Exchange Server for the latest security updates to Exchange Server.

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/why-exchange-server-updates-matter/ba-p/2280770|Microsoft Exchange Team Blog - Why Exchange Server updates matter]]

[[https://support.microsoft.com/en-us/Search/results?query=Description+of+the+security+update+for+Microsoft+Exchange+Server|Microsoft Support - Results for "Description of the security update for Microsoft Exchange Server"]]


=====Exchange Server Emergency Mitigation=====

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/new-security-feature-in-september-2021-cumulative-update-for/ba-p/2783155|Microsoft Exchange Team Blog - New security feature in September 2021 Cumulative Update for Exchange Server]] \\
[[https://techcommunity.microsoft.com/t5/exchange-team-blog/addressing-your-feedback-on-the-exchange-emergency-mitigation/ba-p/2796190|Microsoft Exchange Team Blog - Addressing Your Feedback on the Exchange Emergency Mitigation Service]] \\

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-september-2021-quarterly-exchange-updates/ba-p/2779883|Microsoft Exchange Team Blog - Released: September 2021 Quarterly Exchange Updates]] and [[https://support.microsoft.com/en-us/kb/5005341|Microsoft Support - Cannot log in to OWA or ECP after July 2021 SU for Exchange Server 2019, 2016, and 2013 (KB 5005341)]] \\


=====CVE-2023-28310, CVE-2023-32031=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28310|CVE-2023-28310]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 8.0.
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32031|CVE-2023-32031]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 8.8


[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-june-2023-exchange-server-security-updates/ba-p/3845326|Microsoft Exchange Team Blog - Released: June 2023 Exchange Server Security Updates]]


=====CVE-2023-21710, CVE-2023-21707, CVE-2023-21706, and CVE-2023-21529=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21529|CVE-2023-21529]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 8.8.
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21706|CVE-2023-21706]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 8.8.
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21707|CVE-2023-21707]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 8.8.
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21710|CVE-2023-21710]] - Microsoft Exchange Server Remote Code Execution Vulnerability, CVSS 7.2.

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-february-2023-exchange-server-security-updates/ba-p/3741058|Microsoft Exchange Team Blog - Released: February 2023 Exchange Server Security Updates]] \\
[[https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-2016-and-2013-february-14-2023-kb5023038-2e60d338-dda3-46ed-aed1-4a8bbee87d23|Microsoft Support - Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: February 14, 2023 (KB5023038)]]


=====CVE-2022-23277, CVE-2022-24463=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23277|CVE-2022-23277]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24463|CVE-2022-24463]] - Microsoft Exchange Server Spoofing Vulnerability

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-march-2022-exchange-server-security-updates/ba-p/3247586|Microsoft Exchange Team Blog - Released: March 2022 Exchange Server Security Updates]]
[[https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2013-march-8-2022-kb5010324-1cc1891e-5be1-4ee1-abad-3f3acbb82f9c|Microsoft Support - Description of the security update for Microsoft Exchange Server 2013: March 8, 2022 (KB5010324)]]


=====CVE-2022-21846, CVE-2022-21855, CVE-2022-21969=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21846|CVE-2022-21846]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21855|CVE-2022-21855]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21969|CVE-2022-21969]] - Microsoft Exchange Server Remote Code Execution Vulnerability

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-january-2022-exchange-server-security-updates/ba-p/3050699|Microsoft Exchange Team Blog - Released: January 2022 Exchange Server Security Updates]] \\
[[https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-2016-and-2013-january-11-2022-kb5008631-2ee4d1f3-8341-4a4d-86be-4b73bc944f1b|Microsoft Support - 
Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: January 11, 2022 (KB5008631)]]


=====CVE-2021-41349, CVE-2021-42305, CVE-2021-42321=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41349|CVE-2021-41349]] - Microsoft Exchange Server Spoofing Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42305|CVE-2021-42305]] - Microsoft Exchange Server Spoofing Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42321|CVE-2021-42321]] - Microsoft Exchange Server Remote Code Execution Vulnerability

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-november-2021-exchange-server-security-updates/ba-p/2933169|Microsoft Exchange Team Blog - Released: November 2021 Exchange Server Security Updates]] \\
[[https://support.microsoft.com/en-us/kb/5007409|Microsoft Support - Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: November 9, 2021 (KB5007409)]]


=====CVE-2021-26427, CVE-2021-34453, CVE-2021-41348, CVE-2021-41350=====

  * [[https://msrc.microsoft.com/update-guide/en-us/vulnerability/CVE-2021-26427|CVE-2021-26427]]
  * [[https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2021-34453|CVE-2021-34453]]
  * [[https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2021-41348|CVE-2021-41348]]
  * [[https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2021-41350|CVE-2021-41350]]

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-october-2021-exchange-server-security-updates/ba-p/2838287|Microsoft Exchange Team Blog - Released: October 2021 Exchange Server Security Updates]] \\
[[https://support.microsoft.com/en-us/kb/5007012|Microsoft Support - 
Description of the security update for Microsoft Exchange Server 2019 and 2016: October 12, 2021 (KB5007012)]]


=====CVE-2021-3210[7,9],CVE-2021-3119[5,8]======

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31207|CVE-2021-31207]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31209|CVE-2021-31209]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31195|CVE-2021-31195]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31198|CVE-2021-31198]]

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-may-2021-exchange-server-security-updates/ba-p/2335209|Microsoft - Exchange Team Blog - Released: May 2021 Exchange Server Security Updates]] \\
[[https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-2016-and-2013-may-11-2021-kb5003435-028bd051-b2f1-4310-8f35-c41c9ce5a2f1|Microsoft Support - Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: May 11, 2021 (KB5003435)]] \\

=====CVE-2021-2848[0-3] + CVE-2021-34473 + CVE-2021-34523, CVE-2021-33766=====

Multiple remote code execution vulnerabilities in Exchange Server 2013, 2016, 2019.

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28480|CVE-2021-28480]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28481|CVE-2021-28481]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28482|CVE-2021-28482]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28483|CVE-2021-28483]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34473|CVE-2021-34473]] - Microsoft Exchange Server Remote Code Execution Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34523|CVE-2021-34523]] - Microsoft Exchange Server Elevation of Privilege Vulnerability
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-33766|CVE-2021-33766]] - Microsoft Exchange Information Disclosure Vulnerability

[[https://techcommunity.microsoft.com/t5/exchange-team-blog/released-april-2021-exchange-server-security-updates/ba-p/2254617|Microsoft - Exchange Team Blog - Released: April 2021 Exchange Server Security Updates]] \\
[[https://msrc-blog.microsoft.com/2021/04/13/april-2021-update-tuesday-packages-now-available/|Microsoft Security Response Center - April 2021 Update Tuesday packages now available]] \\
[[https://support.microsoft.com/en-us/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-2016-and-2013-april-13-2021-kb5001779-8e08f3b3-fc7b-466c-bbb7-5d5aa16ef064|Microsoft Support - Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: April 13, 2021 (KB5001779)]] \\

[[https://www.ncsc.nl/actueel/advisory?id=NCSC-2021-0314|NCSC - NCSC-2021-0314 - Kwetsbaarheden verholpen in Microsoft Exchange Server]] \\
[[https://tweakers.net/nieuws/180460/microsoft-waarschuwt-opnieuw-voor-ernstige-kwetsbaarheden-in-exchange.html|tweakers.net - Microsoft waarschuwt opnieuw voor ernstige kwetsbaarheden in Exchange]] \\


=====CVE-2021-2685[5,7-8],CVE-2021-27065=====

  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26855|CVE-2021-26855]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26857|CVE-2021-26857]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26858|CVE-2021-26858]]
  * [[https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-27065|CVE-2021-27065]]

[[https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/|Microsoft Security Blog -  HAFNIUM targeting Exchange Servers with 0-day exploits]] \\
[[https://msrc-blog.microsoft.com/2021/03/02/multiple-security-updates-released-for-exchange-server/|Microsoft Security Response Center - On-Premises Exchange Server Vulnerabilities Resource Center – updated March 25, 2021]] \\
[[https://msrc-blog.microsoft.com/2021/03/16/guidance-for-responders-investigating-and-remediating-on-premises-exchange-server-vulnerabilities/|Microsoft Security Response Center - Guidance for responders: Investigating and remediating on-premises Exchange Server vulnerabilities]] \\

[[https://tweakers.net/nieuws/178776/microsoft-dicht-zerodays-in-exchange-die-misbruikt-zijn-door-chinese-hackers.html|tweakers.net - Microsoft dicht zerodays in Exchange 'die misbruikt zijn door Chinese hackers']] \\