CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
16.0%
**Important:**This regularly scheduled cumulative update contains all the security fixes of the security updates in June and other previous security updates…
Cumulative Update 10 for Microsoft Exchange Server 2019 was released on June 29, 2021. It includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. These fixes will also be included in later cumulative updates for Exchange Server 2019.
This update also includes new daylight saving time (DST) updates for Exchange Server 2019. For more information about DST, see Daylight Saving Time Help and Support Center.
Microsoft Exchange Server 2019 now supports integration with Windows Antimalware Scan Interface (AMSI). This feature enables an AMSI-capable antivirus or antimalware solution to scan content in HTTP requests that’re sent to the Exchange Server. Additionally, it will block a malicious request before it’s handled by Exchange. For more details, see More about AMSI integration with Exchange Server.
The /PrepareDomain operation automatically runs in the Active Directory domain in which the**/PrepareAD command is run. However, it may be unable to update other domains in the forest. Therefore, a domain administrator should run the/PrepareDomain** in other domains in the forest.
* About the permission question:
Because /PrepareAD is triggered in Setup, if the user who initiates Setup isn’t a member of Schema Admins and Enterprise Admins, the readiness check will fail and you receive the following error messages.Error 1:
The Active Directory schema isn’t up-to-date, and this user account isn’t a member of the ‘Schema Admins’ and/or ‘Enterprise Admins’ groups. For more informaion, visit: <http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setipreadiness.SchemaUpdateRequired.aspx>.
Error 2:
Global updates need to be made to Active Directory, and this user account isn’t a member of the 'Enterprise Admins’group. For more information, visit: <http://technet.microsoft.com/library(EXCHG.150)/ms.exch.setupreadiness.GlobalUpdateRequred.aspx>.
This cumulative update also fixes the issues that are described in the following Microsoft Knowledge Base articles:
To get Cumulative Update 10 for Exchange Server 2019, go to Microsoft Volume Licensing Center.Note The Cumulative Update 10 package can be used to run a new installation of Exchange Server 2019 or to upgrade an existing Exchange Server 2019 installation to Cumulative Update 10.
This cumulative update requires Microsoft .NET Framework 4.8.A component that’s used within Exchange Server requires a new Visual C++ component to be installed together with Exchange Server. This prerequisite can be downloaded at Visual C++ Redistributable Package for Visual Studio 2012.For more information about the prerequisites to set up Exchange Server 2019, see Exchange 2019 prerequisites.
You might have to restart the computer after you apply this cumulative update package.
You don’t have to make any changes to the registry after you apply this cumulative update package.
After you install this cumulative update package, you can’t uninstall the package to revert to an earlier version of Exchange Server 2019. If you uninstall this cumulative update package, Exchange Server 2019 is removed from the server.
File name | SHA256 hash |
---|---|
ExchangeServer2019-x64-cu10.iso | A5ABE84FDF53750D631CB4064CAE5E84C293EAD8B94367826925B90BEE6C1EAF |
For more information about the deployment of Exchange Server 2019, see Release notes for Exchange Server 2019.
For more information about the coexistence of Exchange Server 2019 and earlier versions of Exchange Server in the same environment, see Exchange Server 2019 system requirements.
For more information about other Exchange updates, see Exchange Server Updates: Build numbers and release dates.
Learn about the terminology that Microsoft uses to describe software updates.
The following table summarizes some of the most important changes to this topic.Date | Description |
---|---|
August 30, 2021 | Added a “New feature in this cumulative update” section. |
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
16.0%