Microsoft Releases Alternative Mitigations for Exchange Server Vulnerabilities

Original release date: March 5, 2021

Microsoft has released alternative mitigation techniques for Exchange Server customers who are not able to immediately apply updates that address vulnerabilities disclosed on March 2, 2021.

CISA and Microsoft encourages organizations to upgrade their on-premises Exchange environments to the latest supported version. If an organization is unable to immediately apply the updates, CISA strongly recommends they apply the alternative mitigations found in Microsoft’s blog on Exchange Server Vulnerabilities Mitigations in the interim.

For more information about these vulnerabilities, see:



This product is provided subject to this Notification and this Privacy & Use policy.