Skip to content
The Nexus
DossierENTITY

Exchange Server Extended Security Updates

Coverage of Exchange Server Extended Security Updates in the Nexus archive.

Earliest in view: May 15 · 11:51 UTCMost recent: May 15 · 11:51 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYMay 15 · 11:51 UTCTHE REGISTER
    Exploited Exchange Server flaw turns OWA inboxes into script launchpads

    Microsoft confirmed a vulnerability in on-premises Exchange Server that could result in script execution in victims' browsers, affecting Outlook Web Access and tracked as CVE-2026-42897. The flaw can be triggered by a specially crafted email and has a CVSS score of 8.1. A mitigation has been released via the Exchange Emergency Mitigation Service.