CVE-2017-8560

🗓️ 11 Jul 2017 21:00:00Reported by microsoftType

Microsoft Exchange Server OWA handling vulnerability

Reporter	Title	Published	Views	Family All 15
CNVD	Microsoft Exchange Server Cross-Site Scripting Vulnerability (CNVD-2017-15995)	13 Jul 201700:00	–	cnvd
Cvelist	CVE-2017-8560	11 Jul 201721:00	–	cvelist
EUVD	EUVD-2017-17510	7 Oct 202500:30	–	euvd
Microsoft KB	Description of the security update for Microsoft Exchange: July 11, 2017	11 Jul 201707:00	–	mskb
Kaspersky	KLA11845 Multiple vulnerabilities in Microsoft Exchange Server	11 Jul 201700:00	–	kaspersky
Microsoft CVE	Microsoft Exchange Server Elevation of Privilege Vulnerability	11 Jul 201707:00	–	mscve
NVD	CVE-2017-8560	11 Jul 201721:29	–	nvd
OpenVAS	Microsoft Exchange Server Multiple Vulnerabilities (KB4018588)	12 Jul 201700:00	–	openvas
OSV	CVE-2017-8560	11 Jul 201721:29	–	osv
Prion	Cross site scripting	11 Jul 201721:29	–	prion

NVD

Node

microsoft exchange_serverMatch2013cumulative_update_16

microsoft exchange_serverMatch2013sp1

microsoft exchange_serverMatch2016cumulative_update_5

[
  {
    "product": "Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5.",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Microsoft Exchange"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id/1038852
portal	www.portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8560
securityfocus	www.securityfocus.com/bid/99449

13 May 2026 00:24Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

CVSS 36.1

EPSS0.0092

CWE-79