Lucene search

K

China National Vulnerability DatabaseCNVD-2022-77978

HistoryMar 10, 2022 - 12:00 a.m.

Microsoft Exchange Server Spoofing Vulnerability (CNVD-2022-77978)

2022-03-1000:00:00

China National Vulnerability Database

www.cnvd.org.cn

5

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

Microsoft Exchange Server is a set of email service programs from Microsoft Corporation (USA). It provides mail access, storage, forwarding, voice mail, mail filtering, etc. A spoofing vulnerability exists in Microsoft Exchange Server, which can be exploited by attackers to conduct spoofing attacks.

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

Related for CNVD-2022-77978

prion1 checkpoint_advisories1 mscve1 cve1 mskb1 nessus1 kaspersky1 rapid7blog1