Microsoft Exchange Updates March 2022

16th March 2022

Microsoft addressed a critical vulnerability within Microsoft Exchange Server as part of the March 2022 patch Tuesday release.

CVE-2022-23277               Remote Code Execution                8.8/10.0

Summary

Microsoft have addressed a Remote Code Execution vulnerability in Microsoft Exchange Server. An authenticated user can exploit this vulnerability to execute arbitrary code on an affected server. According to Microsoft’s Exploitability Index rating, this vulnerability is rated Exploitation More Likely.

Impact

An authenticated user could attempt to trigger malicious code in the context of the server’s account through a network call. This could enable lateral and further compromise of any connected infrastructure.

Risk

Whilst an account is required to perform this attack, credential-stuffing attacks are commonplace, and should not be seen as a significant barrier to attack.

Solution

Please refer to Microsoft’s patching guidance below.

Product Impact Severity Article Download
MS Exchange Server 2019 Cumulative Update 11 Remote Code Execution Critical 5012698 Security Update
MS Exchange Server 2016 Cumulative Update 22 Remote Code Execution Critical 5012698 Security Update
MS Exchange Server 2019 Cumulative Update 10 Remote Code Execution Critical 5012698 Security Update
MS Exchange Server 2016 Cumulative Update 21 Remote Code Execution Critical 5012698 Security Update
MS Exchange Server 2013 Cumulative Update 23 Remote Code Execution Critical 5010324 Security Update

References

CVE-2022-23277 – Security Update Guide – Microsoft – Microsoft Exchange Server Remote Code Execution Vulnerability

Contact

Daisy’s Operations teams are currently planning expedited customer patching to address these vulnerabilities.

Our dedicated cyber security team are continuing to assess the situation as it evolves to ensure we continue to maintain a secure environment for all of our customers.

Talk to one of our specialists.
Call us on
0344 863 3000