See every side of every news story
Published loading...Updated

CISA Issues Urgent Microsoft CVE-2025-53786 Security Warning

MICROSOFT EXCHANGE SERVER HYBRID DEPLOYMENTS, AUG 6 – The vulnerability allows attackers with on-premises administrative access to escalate privileges into connected cloud environments, risking total domain compromise, CISA said with a CVSS score of 8.0.

  • On August 6, 2025, the Cybersecurity and Infrastructure Security Agency and Microsoft warned of a high-severity vulnerability, CVE-2025-53786, in Microsoft Exchange Server hybrid deployments that could allow attackers to pivot from on-premises servers to the cloud.
  • Following Mollema’s presentation at Black Hat 2025, CISA issued its Wednesday evening alert about the high-severity Microsoft Exchange vulnerability.
  • The vulnerability enables escalation of privileges within hybrid deployments, exploiting special access tokens that cannot be canceled once stolen, offering up to 24 hours of unchecked access, requiring administrative access on an Exchange Server.
  • Under an emergency directive, CISA required federal agencies to assess their Exchange environments and disconnect end-of-life servers by 9 a.m. on Monday, Aug. 11.
  • Starting this month, Microsoft will temporarily block Exchange Web Services traffic via the shared service principal, with a permanent block after October 31, 2025, and support ending October 14, 2025.
Insights by Ground AI
Does this summary seem wrong?

18 Articles

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

Cybersecurity Dive broke the news in on Wednesday, August 6, 2025.
Sources are mostly out of (0)