1424 matches found
CVE-2025-64667
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
Security Updates for Microsoft Exchange Server (December 2025)
The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities as referenced in the December, 2025 security bulletin. - Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate...
CVE-2025-64667
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-64667
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-64666
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability
...
EUVD-2025-202236
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability
...
CVE-2025-64666
CVE-2025-64666 affects Microsoft Exchange Server and is caused by improper input validation that permits an authenticated, network-accessing attacker to elevate privileges. The vulnerability is categorized with a high impact (C/H, I/H, A/H) and requires low privileges with no user interaction. Pu...
CVE-2025-64667 Microsoft Exchange Server Spoofing Vulnerability
...
EUVD-2025-202237
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
Microsoft Exchange Server Spoofing Vulnerability
User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
Microsoft Exchange Server Elevation of Privilege Vulnerability
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...
PT-2025-50198
Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server affected versions not specified Description Improper input validation in Microsoft Exchange Server can allow an authorized attacker to elevate privileges on a network. This issue allows attackers to affect the system...
KLA90815 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof us...
KLA90811 Multiple vulnerabilities in Microsoft Product (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, spoof user interface, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a...
Microsoft Exchange Server Spoofing Vulnerability (CNVD-2025-26718)
Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides e-mail access, storage, forwarding, voice mail, e-mail filtering and screening. A spoofing vulnerability exists in Microsoft Exchange Server, which can be exploited by attackers...
CVE-2025-59248
Improper input validation in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...
EUVD-2025-34376
Weak authentication in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network...
EUVD-2025-34428
Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally...