KLA12137
Multiple vulnerabilities in Microsoft Exchange Server

Обновлено: 28/09/2023

Дата обнаружения	13/04/2021
Уровень угрозы	Critical
Описание	Remote code execution vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code.
Эксплуатация	Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Пораженные продукты	Microsoft Exchange Server 2013 Cumulative Update 23 Microsoft Exchange Server 2016 Cumulative Update 20 Microsoft Exchange Server 2019 Cumulative Update 9 Microsoft Exchange Server 2016 Cumulative Update 19 Microsoft Exchange Server 2019 Cumulative Update 8
Решение	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Первичный источник обнаружения	CVE-2021-28480 CVE-2021-28482 CVE-2021-28483 CVE-2021-28481
Оказываемое влияние ?	ACE [?]
Связанные продукты	Microsoft Exchange Server
CVE-IDS	CVE-2021-284829.0Critical CVE-2021-284837.7Critical
KB list	5001779

KLA12137Multiple vulnerabilities in Microsoft Exchange Server