15943 matches found
CVE-2026-55006
Microsoft Exchange Server vulnerability CVE-2026-55006: Insufficient granularity of access control enables local privilege escalation for an authorized attacker. Root cause: lack of fine-grained access controls. Impact: high confidentiality, integrity, and availability impact per CVSS 3.1 (AV:L/A...
CVE-2026-55008
CVE-2026-55008 affects Microsoft Exchange Server and is caused by improper neutralization of input during web page generation, enabling cross-site scripting. The NVD entry lists a high-severity CVSS 3.1 base score of 9.6 (NETWORK, LOW attack complexity, NONE privileges, user interaction required,...
CVE-2026-55008 Microsoft Exchange Server Spoofing Vulnerability
...
CVE-2026-55006 Microsoft Exchange Server Elevation of Privilege Vulnerability
...
CVE-2026-55006 Microsoft Exchange Server Elevation of Privilege Vulnerability
...
CVE-2026-55005
CVE-2026-55005 is a reported heap-based buffer overflow in Microsoft Exchange Server that enables an authorized attacker to execute code over the network. According to the sources, the vulnerability can be triggered remotely (attack vector: NETWORK) with low privileges required and no user intera...
CVE-2026-55005 Microsoft Exchange Server Remote Code Execution Vulnerability
...
CVE-2026-50696
CVE-2026-50696 is a heap-based buffer overflow in the Windows Internet Key Exchange (IKE) Protocol that allows an unauthenticated, network-based attacker to cause a denial of service. The vulnerability is documented across several sources (NVD and CVE records), with a CVSS v3.1 base score of 7.5 ...
CVE-2026-50696 Internet Key Exchange (IKE) Protocol Denial of Service Vulnerability
...
Microsoft Exchange Server Remote Code Execution Vulnerability
Heap-based buffer overflow in Microsoft Exchange Server allows an authorized attacker to execute code over a network...
Microsoft Exchange Server Spoofing Vulnerability
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
Description of the security update for Microsoft Exchange Server Subscription Edition RTM: July 14, 2026 (KB5103212)
None None...
Description of the security update for Microsoft Exchange Server 2016 CU23: July 14, 2026 (KB5103215)
None None...
Description of the security update for Microsoft Exchange Server 2019 CU14: July 14, 2026 (KB5103214)
None None...
Description of the security update for Microsoft Exchange Server 2019 CU15: July 14, 2026 (KB5103213)
None None...
CVE-2026-10797
creationtimestamp| type| source ---|---|--- 2026-07-14 09:18:49+00:00| seen| https://bsky.app/profile/esetresearch.bsky.social/post/3mqlustra4c24 2026-07-14 09:18:49+00:00| seen| https://bsky.app/profile/esetresearch.bsky.social/post/3mqlusqj43c24 2026-07-14 09:18:50+00:00| seen|...
CVE-2026-50722
A flaw was found in Libreswan's implementation of IKEv2 authentication when processing signatures utilizing the RSASSA-PKCS1-v15 scheme. The RSAauthenticatehashsignaturepkcs115rsa function does not correctly validate the DER encoding of the ASN.1 digest. A remote, unauthenticated attacker could...
CVE-2026-15584
creationtimestamp| type| source ---|---|--- 2026-07-13 13:23:46+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116912883381040364 2026-07-13 13:43:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqjt5kbc6h25 2026-07-13 16:07:28+00:00| seen|...
CVE-2026-14453
creationtimestamp| type| source ---|---|--- 2026-07-13 09:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116911848014654725 2026-07-13 09:00:30+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mqjddarg6f2f 2026-07-13 09:08:06+00:00| seen|...
CVE-2026-15515
creationtimestamp| type| source ---|---|--- 2026-07-13 01:29:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqik4jlf3e2x 2026-07-13 01:30:25+00:00| seen| https://infosec.exchange/users/offseq/statuses/116910078363580201 2026-07-13 01:30:27+00:00| seen|...