Lucene search
K

6 matches found

NVD
NVD
added 2020/10/16 11:15 p.m.17 views

CVE-2020-16969

An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user. To exploit the vulnerability, an attacker could include...

7.1CVSS0.02528EPSS
Exploits0References1
CVE
CVE
added 2020/10/16 10:18 p.m.160 views

CVE-2020-16969

CVE-2020-16969 affects Microsoft Exchange Server. It is an information-disclosure vulnerability rooted in how tokens are validated when handling certain messages. An attacker could craft OWA messages that are loaded from an attacker-controlled URL, enabling information disclosure without warning....

7.1CVSS8AI score0.02528EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/10/16 10:18 p.m.35 views

CVE-2020-16969 Microsoft Exchange Information Disclosure Vulnerability

...

7.1CVSS8.2AI score0.02528EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/16 12:0 a.m.43 views

Security Updates for Exchange (October 2020)

The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who...

7.1CVSS7.9AI score0.02528EPSS
Exploits0References2
NCSC
NCSC
added 2020/10/13 12:0 a.m.5 views

Vulnerability fixed in Microsoft Exchange Server

Microsoft has fixed a vulnerability that could allow an authenticated malicious party potentially able to gain access to sensitive systems. Microsoft Exchange Server: |---------------|------|-------------------------------------| | CVE ID | CVSS | Impact |...

7.1CVSS6.2AI score0.02528EPSS
Exploits0
Kaspersky
Kaspersky
added 2020/10/13 12:0 a.m.29 views

KLA11975 OSI vulnerability in Microsoft Exchange Server

An information disclosure vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2020-16969 Related products Microsoft-Exchange-Server CVE list CVE-2020-16969 high KB list 4581424 Solution Insta...

7.1CVSS8.1AI score0.02528EPSS
Exploits0References4
Rows per page
Query Builder