Exchange CVE-2022-41040 – Mitigation Service

Exchange CVE-2022-41040 – Mitigation Service

### Check if Mitigation Service has been enabled for Organization
[PS] C:\Program Files\Microsoft\Exchange Server\V15\scripts>Get-OrganizationConfig | select MitigationsEnabled

MitigationsEnabled
------------------
              True


### Check if Mitigation Service has been enabled for Exchange Nodes
[PS] C:\Program Files\Microsoft\Exchange Server\V15\scripts>Get-ExchangeServer | select Name, Miti*

Name   MitigationsEnabled MitigationsApplied MitigationsBlocked
----   ------------------ ------------------ ------------------
EX0401               True {M1.1, PING1}

### Check already applied Mitigations
[PS] C:\Program Files\Microsoft\Exchange Server\V15\scripts>cd $exscripts
[PS] C:\Program Files\Microsoft\Exchange Server\V15\scripts>.\Get-Mitigations.ps1


Server      : EX0401
Version     : Version 15.2 (Build 1118.7)
ID          : M1.1
Type        : UrlRewrite
Description : Mitigation of CVE-2022-41040 via a URL Rewrite configuration.
Status      : Applied

Server      : EX0401
Version     : Version 15.2 (Build 1118.7)
ID          : PING1
Type        : Ping
Description : EEMS Heartbeat probe. Does not modify any exchange settings.
Status      : Applied

You may also like...