DIVD-2023-00010 - Remote Code Execution in Microsoft Exchange Server
| Our reference | DIVD-2023-00010 |
| Case lead | Célistine Oosting |
| Researcher(s) | |
| CVE(s) | |
| Products |
|
| Versions |
|
| Recommendation | Be sure to install the latest Cumulative security Update from Microsoft for Exchange |
| Patch status | Fully patched |
| Status | Open |
| Last modified | 08 Mar 2023 20:00 |
Summary
On the 14th of February Microsoft released an update that patched 4 CVE’s in Microsoft Exchange Server that can lead to remote code execution on vulnerable systems. After we became aware of these vulnerabilities, we created a case for it and began scanning for these vulnerabilities.
What you can do
Make sure you’re on the latest Cumulative Update for your version of Exchange Server. The following are as of writing the latest versions.
- Microsoft Exchange Server 2013: Cumulative Update 23 (Buildnr. 15.00.1497.047)
- Microsoft Exchange Server 2016: Cumulative Update 23 (Buildnr. 15.01.2507.021)
- Microsoft Exchange Server 2019: Cumulative Update 12 (Buildnr. 15.02.1118.025)
What we are doing
We are scanning for these vulnerabilities and will send out notifications to owners of vulnerable systems.
Timeline
| Date | Description |
|---|---|
| 14 Feb 2023 | Patch Released by Microsoft |
| 14 Feb 2023 | Case Created Opened by DIVD |
| 07 Mar 2023 | DIVD Started the Initial Scan for this Vulnerability |
gantt
title DIVD-2023-00010 - Remote Code Execution in Microsoft Exchange Server
dateFormat YYYY-MM-DD
axisFormat %e %b %Y
section Case
DIVD-2023-00010 - Remote Code Execution in Microsoft Exchange Server (still open) :2023-02-14, 2023-04-03
section Events
Patch Released by Microsoft : milestone, 2023-02-14, 0d
Case Created Opened by DIVD : milestone, 2023-02-14, 0d
DIVD Started the Initial Scan for this Vulnerability : milestone, 2023-03-07, 0d
More information
- CVE-2023-21710 at Microsoft
- CVE-2023-21529 at Microsoft
- CVE-2023-21706 at Microsoft
- CVE-2023-21707 at Microsoft