Vulnerabilities CVE-2022-41040 and CVE-2022-41082

Nandan NK 50 Reputation points
2024-04-03T14:38:35.1366667+00:00

Hello Team,

We have exchange server 2019 with CU14, we have detected Vulnerabilities CVE-2022-41040 and CVE-2022-41082 in our environment as remediation for this we tried to install SU KB5019758 as this is not compatible with CU14 we are not able to proceed further, can anyone help how we can address this vulnerability in CU14.

Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,465 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,774 questions
0 comments
Accepted answer
  1. Andy David - MVP 144.2K Reputation points MVP
    2024-04-03T14:42:43.4266667+00:00

    Did you enable Extended protection? That should have been enabled by default wit CU14

    https://support.microsoft.com/en-us/topic/cumulative-update-14-for-exchange-server-2019-kb5035606-5d08ad6d-3527-41c9-82b6-e19d3ddf94db

    How did you detect these vulnerabilites?

    Did you run the health checker?

    https://microsoft.github.io/CSS-Exchange/Diagnostics/HealthChecker/

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest