Microsoft Exchange Server Remote Code Execution Vulnerability
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31198 | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-21-894/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
02 Aug 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Microsoft Exchange Server Remote Code Execution Vulnerability | |
CWE | CWE-20 |
29 Apr 2022, 16:51
Type | Values Removed | Values Added |
---|---|---|
References |
|
18 May 2021, 18:09
Type | Values Removed | Values Added |
---|---|---|
References | (N/A) https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31198 - Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
CPE | cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_23:*:*:*:*:*:* |
|
CWE | CWE-77 |
11 May 2021, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-05-11 19:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-31198
Mitre link : CVE-2021-31198
CVE.ORG link : CVE-2021-31198
JSON object : View
Products Affected
microsoft
- exchange_server
CWE
CWE-20
Improper Input Validation