<ul><li>CVE-2024-49040 is a vulnerability in Exchange Server that allows spoofing emails with a legitimate sender address.</li><li>Microsoft temporarily suspended the distribution of updates for Exchange Server due to issues with the patch.</li><li>Attempts to exploit CVE-2024-49040 have been observed, indicating someone is testing the proof of concept.</li><li>Kaspersky has added a detection method for CVE-2024-49040 to their email security solutions.</li></ul>

Spoofing via CVE-2024-49040 | Kaspersky official blog

Discover more