Lucene search
+L

1559 matches found

nvd
nvd
added 2 days ago4 views

CVE-2026-55006

Insufficient granularity of access control in Microsoft Exchange Server allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00219EPSS
Exploits0References1
nvd
nvd
added 2 days ago5 views

CVE-2026-55008

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS0.00725EPSS
Exploits0References1
nvd
nvd
added 2 days ago4 views

CVE-2026-55009

Deserialization of untrusted data in Microsoft Exchange Server allows an authorized attacker to elevate privileges locally...

7.8CVSS0.01652EPSS
Exploits0References1
cve
cve
added 2 days ago25 views

CVE-2026-55009

CVE-2026-55009 describes a deserialization of untrusted data in Microsoft Exchange Server that enables a locally authenticated attacker to elevate privileges. The CVSSv3.1 details show a Local attack vector, Low attack complexity, Low privileges required, and No user interaction, with High impact...

7.8CVSS6AI score0.01652EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2 days ago2 views

CVE-2026-55009 Microsoft Exchange Server Elevation of Privilege Vulnerability

...

7.8CVSS6.1AI score0.01652EPSS
Exploits0References1
cve
cve
added 2 days ago20 views

CVE-2026-55006

Microsoft Exchange Server vulnerability CVE-2026-55006: Insufficient granularity of access control enables local privilege escalation for an authorized attacker. Root cause: lack of fine-grained access controls. Impact: high confidentiality, integrity, and availability impact per CVSS 3.1 (AV:L/A...

7.8CVSS6AI score0.00219EPSS
Exploits0References1
cvelist
cvelist
added 2 days ago24 views

CVE-2026-55006 Microsoft Exchange Server Elevation of Privilege Vulnerability

...

7.8CVSS0.00219EPSS
Exploits0References1
cvelist
cvelist
added 2 days ago24 views

CVE-2026-55008 Microsoft Exchange Server Spoofing Vulnerability

...

9.6CVSS0.00725EPSS
Exploits0References1
cve
cve
added 2 days ago40 views

CVE-2026-55008

CVE-2026-55008 affects Microsoft Exchange Server and is caused by improper neutralization of input during web page generation, enabling cross-site scripting. The NVD entry lists a high-severity CVSS 3.1 base score of 9.6 (NETWORK, LOW attack complexity, NONE privileges, user interaction required,...

9.6CVSS6.1AI score0.00725EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2 days ago3 views

CVE-2026-55006 Microsoft Exchange Server Elevation of Privilege Vulnerability

...

7.8CVSS6.1AI score0.00219EPSS
Exploits0References1
mskb
mskb
added 2 days ago6 views

Description of the security update for Microsoft Exchange Server Subscription Edition RTM: July 14, 2026 (KB5103212)

None None...

9.6CVSS6.1AI score0.01652EPSS
Exploits0
mskb
mskb
added 2 days ago7 views

Description of the security update for Microsoft Exchange Server 2016 CU23: July 14, 2026 (KB5103215)

None None...

9.6CVSS6.1AI score0.01652EPSS
Exploits0
mscve
mscve
added 2 days ago5 views

Microsoft Exchange Server Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Exchange Server allows an authorized attacker to execute code over a network...

8.8CVSS6.3AI score0.00663EPSS
Exploits0
mscve
mscve
added 2 days ago6 views

Microsoft Exchange Server Spoofing Vulnerability

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

9.6CVSS6.1AI score0.0564EPSS
Exploits1
redhatcve
redhatcve
added 2026/06/10 9:2 p.m.10 views

CVE-2026-45501

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

6.5CVSS5.4AI score0.00308EPSS
Exploits0References1
euvd
euvd
added 2026/06/09 6:30 p.m.40 views

EUVD-2026-35506

Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

8.1CVSS5.4AI score0.00353EPSS
Exploits0References2
euvd
euvd
added 2026/06/09 6:30 p.m.28 views

EUVD-2026-35681

Improper control of generation of code 'code injection' in Microsoft Exchange Server allows an unauthorized attacker to execute code over a network...

7.5CVSS5.7AI score0.00475EPSS
Exploits0References2
euvd
euvd
added 2026/06/09 6:30 p.m.35 views

EUVD-2026-35679

Improper authorization in Microsoft Exchange Server allows an authorized attacker to disclose information over a network...

8.1CVSS5.4AI score0.00454EPSS
Exploits0References2
nvd
nvd
added 2026/06/09 5:17 p.m.27 views

CVE-2026-45503

Improper authorization in Microsoft Exchange Server allows an authorized attacker to disclose information over a network...

8.1CVSS0.00454EPSS
Exploits0References1
nvd
nvd
added 2026/06/09 5:17 p.m.9 views

CVE-2026-45501

Server-side request forgery ssrf in Microsoft Exchange Server allows an authorized attacker to perform spoofing over a network...

6.5CVSS0.00308EPSS
Exploits0References1
Rows per page
Query Builder