CVE-2021-26855 - Microsoft Exchange Server Remote Code Execution Vulnerability

Microsoft have posted a threat advisory ( relating to multiple malicious actors actively exploiting several Microsoft Exchange Server vulnerabilities to gain unauthorised access.

Security Updates have been issued to address these vulnerabilities: You should install these security updates as soon as possible to ensure that your systems are secured.

If you are unable to install the security updates, RedShield have a shield available that would provide partial mitigation by blocking malicious requests to paths known to be vulnerable to CVE-2021-26855. This shield is based on information published by Volexity Please contact if you require this shield.

Microsoft have also issued some of their own partial mitigations that can be found at 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request