Microsoft warned Exchange Server customers about critical OWA vulnerability CVE-2026-42897 affecting on-premises deployments.

On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow ...

A single email, opened in a browser, is all it takes. Microsoft Exchange servers running Outlook Web Access (OWA) are being ...

The zero-day vulnerability affects on-premises installations for all versions of Exchange Server 2016, 2019 and Subscription ...

A newly discovered zero-day vulnerability in Microsoft Exchange Server has experts declaring an emergency and urging CSOs to ...

Microsoft warned customers today that Exchange Server 2013 will reach its extended end-of-support (EOS) date 90 days from now, on April 11, 2023. Exchange Server 2013 was released in January 2013 and ...

Microsoft is working to patch CVE-2026-42897, an Exchange Server zero-day vulnerability that has been exploited in attacks.

A zero-day vulnerability exists in Microsoft Exchange, which attackers are already exploiting. Admins should act quickly.

Microsoft Exchange administrators running versions older than March 2023 need to update or they won’t get the latest security mitigations, says an expert. But, David Shipley added, even better advice ...

Three out of the five Five Eyes states – Australia, Canada and the US – have issued guidance to help end-user organisations secure their Microsoft Exchange Server instances, stemming in part from an ...

Microsoft on Thursday cleared up the mystery surrounding its next Exchange Server release plans, as described in an "Exchange Server Roadmap Update" announcement. Like SharePoint Server and Project ...