Lucene search

K
cveMicrosoftCVE-2023-36777
HistorySep 12, 2023 - 5:15 p.m.

CVE-2023-36777

2023-09-1217:15:14
CWE-502
microsoft
web.nvd.nist.gov
45
microsoft
exchange server
information disclosure
vulnerability
nvd

CVSS3

5.7

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

0.002

Percentile

54.0%

Microsoft Exchange Server Information Disclosure Vulnerability

Affected configurations

Nvd
Vulners
Node
microsoftexchange_serverMatch2016-
OR
microsoftexchange_serverMatch2016cumulative_update_1
OR
microsoftexchange_serverMatch2016cumulative_update_10
OR
microsoftexchange_serverMatch2016cumulative_update_11
OR
microsoftexchange_serverMatch2016cumulative_update_12
OR
microsoftexchange_serverMatch2016cumulative_update_13
OR
microsoftexchange_serverMatch2016cumulative_update_14
OR
microsoftexchange_serverMatch2016cumulative_update_15
OR
microsoftexchange_serverMatch2016cumulative_update_16
OR
microsoftexchange_serverMatch2016cumulative_update_17
OR
microsoftexchange_serverMatch2016cumulative_update_18
OR
microsoftexchange_serverMatch2016cumulative_update_19
OR
microsoftexchange_serverMatch2016cumulative_update_2
OR
microsoftexchange_serverMatch2016cumulative_update_20
OR
microsoftexchange_serverMatch2016cumulative_update_21
OR
microsoftexchange_serverMatch2016cumulative_update_22
OR
microsoftexchange_serverMatch2016cumulative_update_3
OR
microsoftexchange_serverMatch2016cumulative_update_4
OR
microsoftexchange_serverMatch2016cumulative_update_5
OR
microsoftexchange_serverMatch2016cumulative_update_6
OR
microsoftexchange_serverMatch2016cumulative_update_7
OR
microsoftexchange_serverMatch2016cumulative_update_8
OR
microsoftexchange_serverMatch2016cumulative_update_9
OR
microsoftexchange_serverMatch2019-
OR
microsoftexchange_serverMatch2019cumulative_update_1
OR
microsoftexchange_serverMatch2019cumulative_update_10
OR
microsoftexchange_serverMatch2019cumulative_update_11
OR
microsoftexchange_serverMatch2019cumulative_update_2
OR
microsoftexchange_serverMatch2019cumulative_update_3
OR
microsoftexchange_serverMatch2019cumulative_update_4
OR
microsoftexchange_serverMatch2019cumulative_update_5
OR
microsoftexchange_serverMatch2019cumulative_update_6
OR
microsoftexchange_serverMatch2019cumulative_update_7
OR
microsoftexchange_serverMatch2019cumulative_update_8
OR
microsoftexchange_serverMatch2019cumulative_update_9
VendorProductVersionCPE
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:-:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_1:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_10:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_11:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_12:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_13:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_14:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_15:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_16:*:*:*:*:*:*
microsoftexchange_server2016cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_17:*:*:*:*:*:*
Rows per page:
1-10 of 351

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2019 Cumulative Update 12",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_12:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.02.0",
        "lessThan": "15.02.1118.037",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2016 Cumulative Update 23",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_23:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.01.0",
        "lessThan": "15.01.2507.032",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Exchange Server 2019 Cumulative Update 13",
    "cpes": [
      "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_13:*:*:*:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.02.0",
        "lessThan": "15.02.1258.025",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

CVSS3

5.7

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

0.002

Percentile

54.0%