Cybersecurity Alerts

Microsoft Exchange Server Information Disclosure Vulnerability

Microsoft Exchange Server contains an information disclosure vulnerability that allows for remote code execution.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

References

• https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-31196
• https://nvd.nist.gov/vuln/detail/CVE-2021-31196