Microsoft re-released patches for seven widely exploited Exchange vulnerabilities on Tuesday. The company says a China-based group it calls Hafnium has exploited the unpatched flaws in an attempt to gain persistent access to email systems. Microsoft also released a patch for an Internet Explorer zero-day vulnerability, CVE-2021-26411. The Multi-State Information Sharing and Analysis Center issued a cybersecurity advisory telling companies to patch the flaw along with the flaw. The vulnerability has been rated as critical and affects Microsoft Net Core 3,.Net Core 3.1 and 2.1 versions.”]
Source: https://www.cuinfosecurity.com/microsoft-patch-tuesday-call-to-action-a-16157