Lucene search
MicrosoftCVELIST:CVE-2021-26854HistoryMar 02, 2021 - 11:55 p.m.
CVE-2021-26854 Microsoft Exchange Server Remote Code Execution Vulnerability
2021-03-0223:55:25
microsoft
www.cve.org
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.8%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 19",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 8",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2013 Cumulative Update 23",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_23:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.00.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 7",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_7:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 18",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_18:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
mscve
mscve
Microsoft Exchange Server Remote Code Execution Vulnerability
2021-03-02 08:00:00
Microsoft Exchange Server Remote Code Execution Vulnerability
2021-03-02 08:00:00
Microsoft Exchange Server Remote Code Execution Vulnerability
2021-03-02 08:00:00
cve
cve
CVE-2021-26854
2021-03-03 00:15:12
prion
prion
Remote code execution
2021-03-03 00:15:00
srcincite
srcincite
nvd
nvd
CVE-2021-26854
2021-03-03 00:15:12
nuclei
nuclei
Microsoft Exchange Server SSRF Vulnerability
2021-03-06 07:00:59
nessus
nessus
Security Updates for Microsoft Exchange Server (March 2021)
2021-03-03 00:00:00
mskb
mskb
rapid7blog
rapid7blog
Mass Exploitation of Exchange Server Zero-Day CVEs: What You Need to Know
2021-03-03 19:23:42
Patch Tuesday - March 2021
2021-03-09 22:13:03
kaspersky
kaspersky
KLA12103 ACE vulnerabilities in Microsoft Exchange Server
2021-03-02 00:00:00
qualysblog
qualysblog
avleonov
avleonov
Joint Advisory AA22-279A and Vulristics
2022-10-21 20:10:13
ics
ics
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8 High
AI Score
Confidence
High
0.01 Low
EPSS
Percentile
83.8%
Related for CVELIST:CVE-2021-26854