Lucene search

CVE-2021-28481

🗓️ 13 Apr 2021 20:21:15Reported by microsoftType

cve🔗 web.nvd.nist.gov📰️ 23 Media mentions👁 204 Views

Microsoft Exchange Server Remote Code Execution Vulnerability CVE-2021-2848

Reporter	Title	Published	Views	Family All 15
NVD	CVE-2021-28481	13 Apr 202120:15	–	nvd
CNVD	Microsoft Exchange Server Remote Code Execution Vulnerability (CNVD-2021-29061)	14 Apr 202100:00	–	cnvd
Microsoft CVE	Microsoft Exchange Server Remote Code Execution Vulnerability	13 Apr 202107:00	–	mscve
Prion	Remote code execution	13 Apr 202120:15	–	prion
Cvelist	CVE-2021-28481 Microsoft Exchange Server Remote Code Execution Vulnerability	13 Apr 202119:33	–	cvelist
0day.today	Microsoft Exchange Server Unpublished Pre-Authentication Remote Code Execution Exploit	22 Jul 202100:00	–	zdt
Kaspersky	KLA12137 Multiple vulnerabilities in Microsoft Exchange Server	13 Apr 202100:00	–	kaspersky
AttackerKB	CVE-2021-28482	13 Apr 202100:00	–	attackerkb
GithubExploit	Exploit for Vulnerability in Microsoft	21 Apr 202109:50	–	githubexploit
Tenable Nessus	Security Updates for Microsoft Exchange Server (April 2021)	13 Apr 202100:00	–	nessus

Nvd

Vulners

Node

microsoft exchange_serverMatch2013cumulative_update_23

microsoft exchange_serverMatch2016cumulative_update_19

microsoft exchange_serverMatch2016cumulative_update_20

microsoft exchange_serverMatch2019cumulative_update_8

microsoft exchange_serverMatch2019cumulative_update_9

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2019 Cumulative Update 9",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.02.0",
        "lessThan": "15.02.0858.010",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2016 Cumulative Update 20",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.01.0",
        "lessThan": "15.01.2242.008",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2013 Cumulative Update 23",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_23:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.00.0",
        "lessThan": "15.00.1497.015",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2016 Cumulative Update 19",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.01.0",
        "lessThan": "15.01.2176.012",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2019 Cumulative Update 8",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.02.0",
        "lessThan": "15.02.0792.013",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28481

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Apr 2021 20:15Current

9.3High risk

Vulners AI Score9.3

CVSS210

CVSS39.8

EPSS0.05073