Exchange Server Version	Build Number	Release Date	KB & Link
Exchange Server 2019 CU15 2025 H1	15.2.1748.10
15.02.1748.010	February 10, 2025	KB5042461
Exchange Server 2019 CU14 Nov 24 SU v2	15.2.1544.14
15.02.1544.014	November 27, 2024	KB5049233
Exchange Server 2019 CU14 Nov 24 S U	15.2.1544.13
15.02.1544.013	November 12, 2024	KB5044062
Exchange Server 2019 CU14 Apr 24 HU2	15.2.1544.11
15.02.1544.011	April 23, 2024	KB5037224
Exchange Server 2019 CU14 Mar 24 SU	15.2.1544.9
15.02.1544.009	March 12, 2024	KB503640 2
Exchange Server 2019 CU14 2024 H1 Feb 13	15.2.1544.04
15.02.1544.004	February 13, 2024	KB5035606
Exchange Server 2019 CU13 Nov 23 SU	15.2.1258.28
15.02.1258.028	November 14, 2023	KB5032146
Exchange Server 2019 CU13 Oct 23 SU	15.2.1258.27
15.02.1258.027	October 10, 2023	KB5030877
Exchange Server 2019 CU13 Aug 23 SUv2	15.2.1258.25
15.02.1258.023	August 15, 2023	KB5030524
Exchange Server 2019 CU13 Aug 23 SUv1	15.2.1258.23
15.02.1258.023	August 8, 2023
(withdrawn Aug. 9)	KB5029388
Exchange Server 2019 CU13 Jun 23 SU	15.2.1258.16
15.02.1258.016	June 13, 2023	KB5026261
Exchange Server 2019 CU13 (2023H1)	15.2.1258.12
15.02.1258.012	May 3, 2023	KB5020999
Exchange Server 2019 CU12 Mar 23 SU	15.2.1118.26
15.02.1118.026	March 14, 2023	KB5024296
Exchange Server 2019 CU12 Feb 23 SU	15.2.1118.25
15.02.1118.025	February 14, 2023	KB5023038
Exchange Server 2019 CU12 Jan 23 SU	15.2.1118.21
15.02.1118.021	January 10, 2023	KB5022193
Exchange Server 2019 CU12 Nov 22 SU	15.2.1118.20
15.02.1118.020	November 8, 2022	KB5019758
Exchange Server 2019 CU12 Oct 22 SU	15.2.1118.15
15.2.1118.015	October 11,2022	KB5019077
Exchange Server 2019 CU12 Aug 22 SU	15.2.1118.12
15.02.1118.012	August 9, 2022	KB5015322
Exchange Server 2019 CU12 May 22 SU	15.2.1118.9
15.02.1118.009	May 10, 2022	KB5014261
Exchange Server 2019 CU12	15.2.1118.7
15.02.1118.007	April 20, 2022	KB5011156
Exchange Server 2019 CU11 Mar 22 SU	15.2.986.22
15.02.0986.022	March 8, 2022	KB5012698
Exchange Server 2019 CU11 Jan 22 SU	15.2.986.15
15.02.0986.015	January 11, 2022	KB5008631
[Exchange Server 2019 CU11
Nov 21 SU](https://www.microsoft.com/en-us/download/details.aspx?id=103643)	15.2.986.14
15.02.0986.014	November 9, 2021	KB5007409
[Exchange Server 2019 CU11
Oct 21 SU](https://support.microsoft.com/en-gb/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-and-2016-october-12-2021-kb5007012-de43d01b-d54f-4b40-91d1-93525a29437c)	15.2.986.9
15.02.0986.009	October 12, 2021	KB5007012
Exchange Server 2019 CU11	15.2.986.5
15.02.0986.005	September 28, 2021	KB5005334
Exchange Server 2019 CU10 Jan 22 SU	15.2.922.20
15.02.0922.020	January 11, 2022	KB5008631
[Exchange Server 2019 CU10
Nov 21 SU](https://support.microsoft.com/en-gb/topic/description-of-the-security-update-for-microsoft-exchange-server-2019-2016-and-2013-november-9-2021-kb5007409-7e1f235a-d41b-4a76-bcc4-3db90cd161e7)	15.2.922.19
15.02.0922.019	November 9, 2021	KB5007409
Exchange Server 2019 CU10 Oct 21 SU	15.2.922.14
15.02.0922.014	October 12, 2021	KB5007012
Exchange Server 2019 CU10 Jul 21 SU	15.2.922.13
15.02.0922.013	July 13, 2021	KB5004780
Exchange Server 2019 CU10	15.2.922.7
15.02.0922.007	June 29, 2021	KB5003612
Exchange Server 2019 CU9
Jul 21 SU	15.2.858.15
15.02.0858.015	July 13, 2021	KB5004780
[Exchange Server 2019 CU9
May 2 SU](https://support.microsoft.com/help/5003435)	15.2.858.12
15.02.0858.012	May 11, 2021	KB5003435
[Exchange Server 2019 CU9
Apr 2 SU](https://support.microsoft.com/help/5001779)	15.2.858.10
15.02.0858.010	April 13, 2021	KB5001779
Exchange Server 2019 CU9	15.2.858.5
15.02.0858.005	March 16, 2021	KB4602570
[Exchange Server 2019 CU8
May 21 SU](https://support.microsoft.com/help/5003435)	15.2.792.15
15.02.0792.015	May 11, 2021	KB5003435
[Exchange Server 2019 CU8
Apr 21 SU](https://support.microsoft.com/help/5001779)	15.2.792.13
15.02.0792.013	April 13, 2021	KB5001779
[Exchange Server 2019 CU8
Mar 21 SU](https://support.microsoft.com/help/5000871)	15.2.792.10
15.02.0792.010	March 2, 2021	KB5000871
Exchange Server 2019 CU8	15.2.792.3
15.02.0792.003	December 15, 2020	KB5001779
[Exchange Server 2019 CU7
Mar 21 SU](https://support.microsoft.com/help/5000871)	15.2.721.13
15.02.0721.013	March 2, 2021	KB5000871
Exchange Server 2019 CU7	15.2.721.2
15.02.0721.002	September 15, 2020	KB4571787
[Exchange Server 2019 CU6
Mar 21 SU](https://support.microsoft.com/help/5000871)	15.2.659.12
15.02.0659.012	March 2, 2021	KB5000871

I. ProxyLogon Mail Exchange RCE

4 CVE:
- CVE-2021-26855 (Mail Exchange Pre-Auth SSRF)
- CVE-2021-26857 (Post-Auth Deserialization)
- CVE-2021-26858 (Post-Auth arbitrary file write)
- CVE-2021-27065 (Post-Auth arbitrary file write)
CVE-2021-26855 Pre-Auth SSRF. Để khai thác cần chỉnh sửa cookie thành dạng:
```
  X-BEResource=EXCHANGE2016/owa/auth/logon.aspx?a=~1942062522;
```
URL cuối cùng được forward tới Backend có dạng như sau:
CVE-2021-27065 sử dụng tính năng ResetOAB trong Exchange admin center để ghi file. Để khai thác lỗ hổng này, đầu tiên tin tặc sẽ cần một tài khoản Admin mail exchange, sau đó sửa param External URL trong Exchange admin > Servers > Virtual Directories.

Review Bugs Exchange

I. ProxyLogon Mail Exchange RCE

CVE-2021-27065 sử dụng tính năng ResetOAB trong Exchange admin center để ghi file. Để khai thác lỗ hổng này, đầu tiên tin tặc sẽ cần một tài khoản Admin mail exchange, sau đó sửa param External URL trong `Exchange admin` > `Servers` > `Virtual Directories`.

Subscribe to my newsletter

team98

team98

Review Bugs Exchange

I. ProxyLogon Mail Exchange RCE

CVE-2021-27065 sử dụng tính năng ResetOAB trong Exchange admin center để ghi file. Để khai thác lỗ hổng này, đầu tiên tin tặc sẽ cần một tài khoản Admin mail exchange, sau đó sửa param External URL trong Exchange admin > Servers > Virtual Directories.

Subscribe to my newsletter

team98

team98

CVE-2021-27065 sử dụng tính năng ResetOAB trong Exchange admin center để ghi file. Để khai thác lỗ hổng này, đầu tiên tin tặc sẽ cần một tài khoản Admin mail exchange, sau đó sửa param External URL trong `Exchange admin` > `Servers` > `Virtual Directories`.