Vulnerability Details & Action Plan:
Microsoft has provided an update around previously released out-of-band security updates addressing vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019. A remote attacker can exploit three remote code execution vulnerabilities to take control of an affected system and can exploit one vulnerability to obtain access to sensitive information. These security updates still apply to any customer using Office 365 and having a Hybrid Exchange Server.
SyCom encourages users and administrators to review the recently updated Microsoft blog post and apply the necessary updates or workarounds.
SyCom will be happy to assist with remediation efforts related to any vulnerability your business might experience. Please contact your SyCom Account Manager or fill out the form and someone will respond as quickly as possible.