Few minutes ago, Microsoft released a bulletin disclosing 4 critical vulnerabilities affecting Microsoft Exchange :
- CVE-2021-26855
- CVE-2021-26857
- CVE-2021-26858
- CVE-2021-27065
These vulnerabilities are affecting Exchange Web Service & Exchange Control Panel.
Since the patches may take few minutes to be applied over all the infrastructure, we took the decision to temporarily disable these features to protect our customers. Once the patches will be applied, the features will be re-enabled.
Thank you for your understanding.
Update(s):
Date: 2021-03-03 22:47:56 UTC 100% of shared infrastructure are updated
99% of dedicated infrastructure are updated
ECP and EWS are enabled now on dedicated infrastructure that are patched.
Date: 2021-03-03 20:32:15 UTC 100% of shared infrastructure are updated
95% of dedicated infrastructure are updated
Date: 2021-03-03 18:16:27 UTC 99% of shared infrastructure are updated
Date: 2021-03-03 17:20:06 UTC 97% of shared infrastructure are updated
Date: 2021-03-03 16:38:03 UTC 96% of shared infrastructure are updated
Date: 2021-03-03 16:02:01 UTC 95% of shared infrastructure are updated
55% of dedicated infrastructure are updated
Date: 2021-03-03 15:02:28 UTC 94% of shared infrastructure are updated
Date: 2021-03-03 14:36:34 UTC 87.7% of shared infrastructure are updated
ECP and EWS are enabled now on all shared infra.
We started the update of ALL private servers this afternoon. You should have downtime for access your email.
Date: 2021-03-03 12:56:51 UTC 85% of shared infrastructure are updated
Date: 2021-03-03 11:35:57 UTC 80% of shared infrastructure are updated
Date: 2021-03-03 10:23:33 UTC 75% of shared infrastructure are updated
Date: 2021-03-03 08:03:18 UTC EWS are disable, it means MAC software are impacted for your synchronization of e-mail, you need to use OWA web application until this task is done.
Date: 2021-03-03 06:31:56 UTC 37% of shared infrastructure are updated
Date: 2021-03-03 05:42:37 UTC 33% of shared infrastructure are updated