Дата обнаружения
|
02/03/2021 |
Уровень угрозы
|
Critical |
Описание
|
Remote code execution vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. |
Эксплуатация
|
This vulnerability can be exploited by the following malware: https://threats.kaspersky.com/en/threat/Exploit.Script.CVE-2021-26855/ Public exploits exist for this vulnerability. |
Пораженные продукты
|
Microsoft Exchange Server 2019 Cumulative Update 8 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2021-26412 CVE-2021-26855 CVE-2021-27078 CVE-2021-27065 CVE-2021-26854 CVE-2021-26857 CVE-2021-26858 |
Оказываемое влияние
?
|
ACE
[?]
|
Связанные продукты
|
Microsoft Exchange Server |
CVE-IDS
|
CVE-2021-264126.5High
CVE-2021-268557.5Critical CVE-2021-270786.5High CVE-2021-270656.8High CVE-2021-268546.5High CVE-2021-268576.8High CVE-2021-268586.8High |
KB list
|