9 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.3%
10/12/2021
High
Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, cause denial of service.
Microsoft Exchange Server 2013 Cumulative Update 23
Microsoft Exchange Server 2019 Cumulative Update 11
Microsoft Exchange Server 2019 Cumulative Update 10
Microsoft Exchange Server 2016 Cumulative Update 22
Microsoft Exchange Server 2016 Cumulative Update 21
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2021-41348
CVE-2021-41350
CVE-2021-26427
CVE-2021-34453
ACE
CVE-2021-413488.0Critical
CVE-2021-413506.5High
CVE-2021-264279.0Critical
CVE-2021-344537.5Critical
support.microsoft.com/kb/5007011
support.microsoft.com/kb/5007012
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26427
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34453
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41348
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41350
nvd.nist.gov/vuln/detail/CVE-2021-26427
nvd.nist.gov/vuln/detail/CVE-2021-34453
nvd.nist.gov/vuln/detail/CVE-2021-41348
nvd.nist.gov/vuln/detail/CVE-2021-41350
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Exchange-Server/
9 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
8.2 High
AI Score
Confidence
High
5.8 Medium
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:A/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.3%