Microsoft Exchange Updates March 2022
Microsoft addressed a critical vulnerability within Microsoft Exchange Server as part of the March 2022 patch Tuesday release.
CVE-2022-23277 Remote Code Execution 8.8/10.0
Summary
Microsoft have addressed a Remote Code Execution vulnerability in Microsoft Exchange Server. An authenticated user can exploit this vulnerability to execute arbitrary code on an affected server. According to Microsoft’s Exploitability Index rating, this vulnerability is rated Exploitation More Likely.
Impact
An authenticated user could attempt to trigger malicious code in the context of the server’s account through a network call. This could enable lateral and further compromise of any connected infrastructure.
Risk
Whilst an account is required to perform this attack, credential-stuffing attacks are commonplace, and should not be seen as a significant barrier to attack.
Solution
Please refer to Microsoft’s patching guidance below.
| Product | Impact | Severity | Article | Download |
| MS Exchange Server 2019 Cumulative Update 11 | Remote Code Execution | Critical | 5012698 | Security Update |
| MS Exchange Server 2016 Cumulative Update 22 | Remote Code Execution | Critical | 5012698 | Security Update |
| MS Exchange Server 2019 Cumulative Update 10 | Remote Code Execution | Critical | 5012698 | Security Update |
| MS Exchange Server 2016 Cumulative Update 21 | Remote Code Execution | Critical | 5012698 | Security Update |
| MS Exchange Server 2013 Cumulative Update 23 | Remote Code Execution | Critical | 5010324 | Security Update |
References
Contact
Daisy’s Operations teams are currently planning expedited customer patching to address these vulnerabilities.
Our dedicated cyber security team are continuing to assess the situation as it evolves to ensure we continue to maintain a secure environment for all of our customers.