EUVD-2017-17570

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Microsoft Exchange Server versions allow open redirect vulnerability leading to spoofing risks

Reporter	Title	Published	Views	Family All 13
CNVD	Microsoft Exchange Server Open Redirect Vulnerability (CNVD-2017-22684)	12 Jul 201700:00	–	cnvd
CVE	CVE-2017-8621	11 Jul 201721:00	–	cve
Cvelist	CVE-2017-8621	11 Jul 201721:00	–	cvelist
Microsoft KB	Description of the security update for Microsoft Exchange: July 11, 2017	11 Jul 201707:00	–	mskb
Kaspersky	KLA11845 Multiple vulnerabilities in Microsoft Exchange Server	11 Jul 201700:00	–	kaspersky
Microsoft CVE	Microsoft Exchange Open Redirect Vulnerability	11 Jul 201707:00	–	mscve
NVD	CVE-2017-8621	11 Jul 201721:29	–	nvd
OpenVAS	Microsoft Exchange Server Multiple Vulnerabilities (KB4018588)	12 Jul 201700:00	–	openvas
OSV	CVE-2017-8621	11 Jul 201721:29	–	osv
Prion	Open redirect	11 Jul 201721:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "b5ae30a6-fca8-3f48-9319-352550ee93cb",
        "vendor": {
          "name": "Microsoft Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "c84fe339-84f5-327e-a06a-0d1cd43c37a7",
        "product": {
          "name": "Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5."
        },
        "product_version": "Microsoft Exchange"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8621
securitytracker	www.securitytracker.com/id/1038852
securityfocus	www.securityfocus.com/bid/99533
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 36.1

CVSS 25.8

EPSS0.01064