Microsoft issues mitigation guidance for exploited Exchange zero-day

Microsoft has disclosed and provided mitigation guidance for a high-severity zero-day vulnerability in on-premises Microsoft Exchange Server that it said is being actively exploited. Tracked as CVE202642897 and rated 8.1, the flaw affects Exchange Outlook on the web for some organizations and allows