Microsoft Patches Critical Exchange Server Flaw


Microsoft today issued security updates for 71 software vulnerabilities, three of which were critical and one that has a known proof-of-concept available in the public domain.

Among the most notable flaws fixed today by Microsoft are:

CVE-2022-23277 Microsoft Exchange Server Remote Code Execution Vulnerability
This is a critical bug that could allow an attacker who has been authenticated to the server run malicious code.

CVE-2022-21990 Remote Desktop Client Remote Code Execution Vulnerability