Total
226 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-21410 | 1 Microsoft | 1 Exchange Server | 2024-04-11 | N/A | 9.8 CRITICAL |
Microsoft Exchange Server Elevation of Privilege Vulnerability | |||||
CVE-2021-26855 | 1 Microsoft | 1 Exchange Server | 2024-02-15 | 7.5 HIGH | 9.1 CRITICAL |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2020-0688 | 1 Microsoft | 1 Exchange Server | 2024-02-13 | 9.0 HIGH | 8.8 HIGH |
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'. | |||||
CVE-2021-34523 | 1 Microsoft | 1 Exchange Server | 2024-02-13 | 7.5 HIGH | 9.0 CRITICAL |
Microsoft Exchange Server Elevation of Privilege Vulnerability | |||||
CVE-2020-16875 | 1 Microsoft | 1 Exchange Server | 2023-12-31 | 9.0 HIGH | 8.4 HIGH |
<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation of the vulnerability requires an authenticated user in a certain Exchange role to be compromised.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Exchange handles cmdlet arguments.</p> | |||||
CVE-2020-16969 | 1 Microsoft | 1 Exchange Server | 2023-12-31 | 4.3 MEDIUM | 7.1 HIGH |
<p>An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user.</p> <p>To exploit the vulnerability, an attacker could include specially crafted OWA messages that could be loaded, without warning or filtering, from the attacker-controlled URL. This callback vector provides an information disclosure tactic used in web beacons and other types of tracking systems.</p> <p>The security update corrects the way that Exchange handles these token validations.</p> | |||||
CVE-2020-17085 | 1 Microsoft | 1 Exchange Server | 2023-12-31 | 4.0 MEDIUM | 6.2 MEDIUM |
Microsoft Exchange Server Denial of Service Vulnerability | |||||
CVE-2020-17084 | 1 Microsoft | 1 Exchange Server | 2023-12-31 | 9.0 HIGH | 8.5 HIGH |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2020-17083 | 1 Microsoft | 1 Exchange Server | 2023-12-31 | 3.5 LOW | 5.5 MEDIUM |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2020-17144 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 6.0 MEDIUM | 8.4 HIGH |
Microsoft Exchange Remote Code Execution Vulnerability | |||||
CVE-2020-17143 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 6.5 MEDIUM | 8.8 HIGH |
Microsoft Exchange Server Information Disclosure Vulnerability | |||||
CVE-2020-17142 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 6.5 MEDIUM | 9.1 CRITICAL |
Microsoft Exchange Remote Code Execution Vulnerability | |||||
CVE-2020-17141 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 6.0 MEDIUM | 8.4 HIGH |
Microsoft Exchange Remote Code Execution Vulnerability | |||||
CVE-2020-17132 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 6.5 MEDIUM | 9.1 CRITICAL |
Microsoft Exchange Remote Code Execution Vulnerability | |||||
CVE-2020-17117 | 1 Microsoft | 1 Exchange Server | 2023-12-30 | 9.0 HIGH | 6.6 MEDIUM |
Microsoft Exchange Remote Code Execution Vulnerability | |||||
CVE-2021-27078 | 1 Microsoft | 1 Exchange Server | 2023-12-29 | 6.5 MEDIUM | 9.1 CRITICAL |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2021-27065 | 1 Microsoft | 1 Exchange Server | 2023-12-29 | 6.8 MEDIUM | 7.8 HIGH |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2021-26858 | 1 Microsoft | 1 Exchange Server | 2023-12-29 | 6.8 MEDIUM | 7.8 HIGH |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2021-26857 | 1 Microsoft | 1 Exchange Server | 2023-12-29 | 6.8 MEDIUM | 7.8 HIGH |
Microsoft Exchange Server Remote Code Execution Vulnerability | |||||
CVE-2021-26854 | 1 Microsoft | 1 Exchange Server | 2023-12-29 | 6.5 MEDIUM | 6.6 MEDIUM |
Microsoft Exchange Server Remote Code Execution Vulnerability |