Urgent: New Microsoft Exchange Bug Poses ‘Total Domain Compromise’ Risk, CISA Mandates Immediate Patching
Urgent: New Microsoft Exchange Bug Poses ‘Total Domain Compromise’ Risk, CISA Mandates Immediate Patching Microsoft and the US Cybersecurity and Infrastructure Security Agency (CISA) have issued an urgent warning regarding a critical new high-severity vulnerability in Exchange Server hybrid deployments. Tracked as CVE-2025-53786, this flaw could allow attackers with on-premises administrative access to escalate privileges, potentially leading to a “total domain compromise” across both hybrid cloud and on-premises environments. While not yet actively exploited, Microsoft deems exploitation “more likely” given…