CVE-2021-26858#

Statement on CVE-2021-26858 MS Exchange Vulnerability#

April, 2021

Information#

Microsoft Exchange Server Remote Code Execution Vulnerability

Severity#

Medium

Response#

Melissa Data Corporation (“Melissa”) has applied all critical updates and patches to its servers the same day they were released by Microsoft.

More details about the CVEs can be found in the CISA Alert AA21-062A.

For details on the patches applied, please visit the following link: Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: April 13, 2021 (KB5001779)

Melissa will continue to follow all guidance provided by Microsoft or CISA as necessary to prevent any future risks.