Exchange 2013 HAFNIUM attack: based on these factors, is this server compromised?

exchange-2013

According to my research, these vulnerabilities are used as part of an attack chain. The initial attack requires the ability to make an untrusted connection to Exchange server port 443. Patching Exchange Servers immediately is the best first step. Other temporary options can include protection by restricting untrusted connections, or by setting up a VPN to separate the Exchange server from external access. Using this mitigation will only protect against the initial portion of the attack; other portions of the attack chain can be triggered if an attacker already has access or can convince an administrator to run a malicious file.

And the security update release contains fixes for seven security vulnerabilities affecting Exchange Server. Of these, four vulnerabilities were known to have been used in limited, targeted attacks against on-premises Exchange servers.

In addition, the blog Web shell attacks continue to rise may be helpful to you.

Related

GCP VPC Peering active, connectivity tests ok, but any request (ssh, icmp...) times out
What does a CNAME record do?
Unable to deploy Weave CNI - PODs in CrashLoopBackOff state
Accessing a single virtual volume on DELL ME4012 from multiple hosts
vboxmanage dhcpserver add but client can't get DHCP ip
Can a NTP Server escape the falseticker status?
Server 2016 downloading updates 0%
rsyslog- what's the difference between $ModLoad and module(load)?
DDNS Certificates, Multiple Domains, Let's Encrypt, Certbot, Nginx, Ubuntu
How to find recently joined computers in ActiveDirectory through a PowerShell command?
Does DANE allow for trustable self-signed certificates?
Unplugging power bank usb safely [closed]