This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 35%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENN%3C/text%3E%3C/svg%3E)
Hello Team,
We have exchange server 2019 with CU14, we have detected Vulnerabilities CVE-2022-41040 and CVE-2022-41082 in our environment as remediation for this we tried to install SU KB5019758 as this is not compatible with CU14 we are not able to proceed further, can anyone help how we can address this vulnerability in CU14.
Did you enable Extended protection? That should have been enabled by default wit CU14
How did you detect these vulnerabilites?
Did you run the health checker?
https://microsoft.github.io/CSS-Exchange/Diagnostics/HealthChecker/
Hello @Andy David - MVP
Yes, Extended protection is enabled.
We have detected vulnerabilities from Arctic Wolf
What does the health checker say?
Hello @Andy David - MVP
Health checker not reporting the vulnerabilities reported in Arctic Wolf.
Yea, that makes me think Artic Wolf is not reporting this correctly.
@Andy David - MVP |
Thank you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 75%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
we have a similar situation. AW is reporting this vulnerability, but we are patched with Exchange Server 2019 CU14 Nov 24 SU v2 and reporting build 15.2.1544.14.