Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

MicrosoftMS:CVE-2024-21410

HistoryFeb 13, 2024 - 8:00 a.m.

Microsoft Exchange Server Elevation of Privilege Vulnerability

2024-02-1308:00:00

Microsoft

msrc.microsoft.com

153

microsoft

exchange

server

privilege

vulnerability

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.926 High

EPSS

Percentile

99.0%

JSON

thn 50

attackerkb 2

nessus 3

cisa_kev 2

cve 2

mskb 3

prion 2

kaspersky 2

malwarebytes 3

githubexploit 22

openvas 3

talosblog 4

mssecure 1

mmpc 1

mscve 2

trendmicroblog 1

msrc 2

securelist 3

krebs 3

hivepro 1

trellix 4

avleonov 2

qualysblog 4

rapid7blog 4

thn

U.S. Government Disrupts Russia-Linked Botnet Engaged in Cyber Espionage

2024-02-16 06:49:00

Why We Must Democratize Cybersecurity

2024-02-16 10:50:00

New Malicious PyPI Packages Caught Using Covert Side-Loading Tactics

2024-02-20 12:30:00

attackerkb

CVE-2024-21410

2024-02-13 00:00:00

CVE-2023-23397

2023-03-14 00:00:00

nessus

Security Updates for Microsoft Exchange Server (February 2024)

2024-02-13 00:00:00

Security Updates for Outlook C2R Elevation of Privilege (March 2023)

2023-03-16 00:00:00

Security Updates for Outlook (March 2023)

2023-03-14 00:00:00

cisa_kev

Microsoft Exchange Server Privilege Escalation Vulnerability

2024-02-15 00:00:00

Microsoft Office Outlook Privilege Escalation Vulnerability

2023-03-14 00:00:00

cve

CVE-2024-21410

2024-02-13 18:15:59

CVE-2023-23397

2023-03-14 17:15:13

mskb

Cumulative Update 14 for Exchange Server 2019 (KB5035606)

2024-02-13 08:00:00

Description of the security update for Outlook 2013: March 14, 2023 (KB5002265)

2023-03-14 07:00:00

Description of the security update for Outlook 2016: March 14, 2023 (KB5002254)

2023-03-14 07:00:00

prion

Privilege escalation

2024-02-13 18:15:00

Privilege escalation

2023-03-14 17:15:00

kaspersky

KLA63959 PE vulnerability in Microsoft Exchange Server

2024-02-13 00:00:00

KLA48560 Multiple vulnerabilities in Microsoft Office

2023-03-14 00:00:00

malwarebytes

Microsoft Exchange vulnerability actively exploited

2024-02-16 13:37:32

How Outlook notification sounds can lead to zero-click exploits

2023-12-21 21:28:01

Update now! Microsoft fixes two zero-day bugs

2023-03-15 01:00:00

githubexploit

Exploit for Authentication Bypass by Capture-replay in Microsoft

2023-03-15 17:03:38

Exploit for Authentication Bypass by Capture-replay in Microsoft

2023-03-18 21:44:46

Exploit for Authentication Bypass by Capture-replay in Microsoft

2023-03-22 11:00:47

openvas

Microsoft Outlook 2013 Service Pack 1 Elevation of Privilege Vulnerability (KB5002265)

2023-03-15 00:00:00

Microsoft Outlook 2016 Elevation of Privilege Vulnerability (KB5002254)

2023-03-15 00:00:00

Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Mar 2023)

2023-03-15 00:00:00

talosblog

Threat Source newsletter (March 23, 2023) — Meta is threatening to ban news sharing in Canada. Good.

2023-03-23 18:00:16

Threat Advisory: Microsoft Outlook privilege escalation vulnerability being exploited in the wild

2023-03-15 23:46:33

Threat Source newsletter (March 16, 2023) — A deep dive into Talos' work in Ukraine

2023-03-16 18:00:15

mssecure

Guidance for investigating attacks using CVE-2023-23397

2023-03-24 18:30:00

mmpc

Guidance for investigating attacks using CVE-2023-23397

2023-03-24 18:30:00

mscve

Microsoft Outlook Elevation of Privilege Vulnerability

2023-03-14 07:00:00

Windows MSHTML Platform Security Feature Bypass Vulnerability

2023-05-09 07:00:00

trendmicroblog

Patch CVE-2023-23397 Immediately: What You Need To Know and Do

2023-03-21 00:00:00

msrc

Microsoft Mitigates Outlook Elevation of Privilege Vulnerability

2023-03-14 13:00:00

Microsoft Mitigates Outlook Elevation of Privilege Vulnerability

2023-03-14 13:00:00

securelist

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

2023-07-19 12:00:41

IT threat evolution Q3 2023

2023-12-01 10:00:09

IT threat evolution in Q1 2023. Non-mobile statistics

2023-06-07 08:00:18

krebs

Microsoft Patch Tuesday, March 2023 Edition

2023-03-15 15:19:32

Fat Patch Tuesday, February 2024 Edition

2024-02-13 22:28:48

Microsoft Patch Tuesday, December 2023 Edition

2023-12-12 22:21:00

hivepro

Microsoft’s February 2024 Patch Tuesday Addresses Two Zero-day Vulnerabilities

2024-02-15 13:17:14

trellix

CVE-2023-23397: The Notification Sound You Don’t Want to Hear

2023-03-17 00:00:00

CVE-2023-23397: The Notification Sound You Don’t Want to Hear

2023-03-17 00:00:00

The Bug Report - March 2023 Edition

2023-04-05 00:00:00

avleonov

Microsoft Patch Tuesday March 2023: Outlook EoP, MOTW Bypass, Excel DoS, HTTP/3 RCE, ICMP RCE, RPC RCE

2023-03-27 00:25:37

February 2024: Vulremi, Vuldetta, PT VM Course relaunch, PT TrendVulns digests, Ivanti, Fortinet, MSPT, Linux PW

2024-03-05 18:43:32

qualysblog

Qualys Survey of Top 10 Exploited Vulnerabilities in 2023

2023-09-26 13:04:00

Microsoft and Adobe Patch Tuesday, February 2024 Security Update Review

2024-02-13 20:03:29

2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is

2023-12-19 15:00:00

rapid7blog

Patch Tuesday - March 2024

2024-03-12 19:47:44

Patch Tuesday - September 2023

2023-09-12 22:55:55

Patch Tuesday - February 2024

2024-02-13 21:26:21

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.926 High

EPSS

Percentile

99.0%

JSON

Related for MS:CVE-2024-21410