Microsoft Exchange Updates April 2021

Microsoft addressed four critical vulnerabilities in Microsoft Exchange Server as part of the April 2021 patch Tuesday release.

CVE-2021-28480               Remote Code Execution                9.8/10.0

CVE-2021-28481               Remote Code Execution                9.8/10.0

CVE-2021-28482               Remote Code Execution                8.8/10.0

CVE-2021-28483               Remote Code Execution                9.0/10.0

There is no known exploitation at the time of notification, however the risk of attack and subsequent compromise steadily increases over time as attackers learn how to exploit any unpatched servers.

Patches are available for the following affected versions:

Exchange Online customers are already protected.

Microsoft have stated, “Although we are not aware of any active exploits in the wild, our recommendation is to install these updates immediately to protect your environment.”

Published on April 13 2021, the US Cybersecurity and Infrastructure Security Agency (CISA) stated, “An attacker could use these vulnerabilities to gain access and maintain persistence on the target host. These vulnerabilities are different from the ones disclosed and fixed in March 2021”.

Please see Microsoft Knowledge Base article for update guidance: KB5001779

Daisy’s Operations teams are currently planning expedited customer patching to address these vulnerabilities.

Our dedicated cyber security team are continuing to assess the situation as it evolves to ensure we continue to maintain a secure environment for all of our customers.

Please see the articles below for further information:

https://techcommunity.microsoft.com/t5/exchange-team-blog/released-april-2021- exchange-server-security-updates/ba-p/2254617

https://www.ncsc.gov.uk/news/security-updates-released-microsoft-exchange-server

https://cyber.dhs.gov/ed/21-02/#supplemental-direction-v2