8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.076 Low
EPSS
Percentile
94.1%
Cumulative Update 1 for Microsoft Exchange Server 2019 was released on February 12, 2019. This cumulative update is a security update. It includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. These fixes will also be included in later cumulative updates for Exchange Server 2019. This update provides a security advisory in Microsoft Exchange. For more information, see Security Advisory ADV190004. It also resolves some vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2019-0686 and Microsoft Common Vulnerabilities and Exposures CVE-2019-0724.This update also includes new daylight saving time (DST) updates for Exchange Server 2019. For more information about DST, see Daylight Saving Time Help and Support Center.
This cumulative update also fixes the issues that are described in the following Microsoft Knowledge Base articles:
To get Cumulative Update 1 for Exchange Server 2019, go to Microsoft Volume Licensing Center.Note The Cumulative Update 1 package can be used to run a new installation of Exchange Server 2019 or to upgrade an existing Exchange Server 2019 installation to Cumulative Update 1.
This cumulative update requires Microsoft .NET Framework 4.7.2. A component that’s used within Exchange Server requires a new Visual C++ component to be installed together with Exchange Server. This prerequisite can be downloaded at Visual C++ Redistributable Package for Visual Studio 2012.For more information about the prerequisites for the setup of Exchange Server 2019, see Exchange 2019 prerequisites.
For deployment information about this update, see security update deployment information: February 12, 2019.
You may have to restart the computer after you apply this cumulative update package.
You don’t have to make any changes to the registry after you apply this cumulative update package.
After you install this cumulative update package, you can’t uninstall the package to revert to an earlier version of Exchange Server 2019. If you uninstall this cumulative update package, Exchange Server 2019 is removed from the server.
For more information about the deployment of Exchange Server 2019, see Release notes for Exchange 2019.
For more information about the coexistence of Exchange Server 2019 and earlier versions of Exchange Server in the same environment, see Exchange 2019 system requirements.
For more information about other Exchange updates, see Exchange Server Updates: Build numbers and release dates.
File name | SHA1 hash | SHA256 hash |
---|---|---|
ExchangeServer2019-x64-cu1.iso | E926B168450F274B5FB53FD26F6E28B336DB1B3D | 8C844BC4A8E04EB3D685E5457F07B192497F61CF8C4F625CFC3424F22FE8726E |
Learn about the terminology that Microsoft uses to describe software updates.
Help for installing updates: Protect yourself onlineHelp for protecting your Windows-based computer from viruses and malware: Microsoft SecurityLocal support according to your country: International Support
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.076 Low
EPSS
Percentile
94.1%