EUVD-2018-20018

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

A tampering vulnerability in Microsoft Exchange Server affects how profile data is handled.

Reporter	Title	Published	Views	Family All 10
CNVD	Microsoft Exchange Server Tampering Security Bypass Vulnerability	15 Aug 201800:00	–	cnvd
CVE	CVE-2018-8374	15 Aug 201817:00	–	cve
Cvelist	CVE-2018-8374	15 Aug 201817:00	–	cvelist
Microsoft KB	Description of the security update for Microsoft Exchange Server 2013 and 2016: August 14, 2018	14 Aug 201807:00	–	mskb
Kaspersky	KLA11302 Multiple vulnerabilities in Microsoft Exchange Server	14 Aug 201800:00	–	kaspersky
Microsoft CVE	Microsoft Exchange Server Tampering Vulnerability	14 Aug 201807:00	–	mscve
NVD	CVE-2018-8374	15 Aug 201817:29	–	nvd
OSV	CVE-2018-8374	15 Aug 201817:29	–	osv
Prion	Spoofing	15 Aug 201817:29	–	prion
Tenable Nessus	Security Updates for Exchange (August 2018)	15 Aug 201800:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "078b89ef-ebd6-3024-96c8-1a74d300a63a",
        "vendor": {
          "name": "Microsoft"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "03a3d07e-5f1a-354d-bd07-2e81a44dac3e",
        "product": {
          "name": "Microsoft Exchange Server"
        },
        "product_version": "2016 Cumulative Update 9"
      },
      {
        "id": "0ae97754-255c-3ba0-afc8-0af697ff18fa",
        "product": {
          "name": "Microsoft Exchange Server"
        },
        "product_version": "2016 Cumulative Update 10"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/104993
securitytracker	www.securitytracker.com/id/1041481
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8374
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.1Medium risk

Vulners AI Score5.1

CVSS 34.3

CVSS 24

EPSS0.04188