Lucene search
K

6 matches found

Prion
Prion
added 2018/03/14 5:29 p.m.24 views

Information disclosure

Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013 Cumulative Update 18, Microsoft Exchange Server 2013 Cumulative Update 19, Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server 2016 Cumulative Update 7, and Microsoft Exchange Serve...

4.3CVSS5.5AI score0.12939EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/03/14 5:0 p.m.38 views

CVE-2018-0940

Microsoft Exchange Outlook Web Access OWA in Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013 Cumulative Update 18, Microsoft Exchange Server 2013 Cumulative Update 19, Microsoft Exchange Server 2013 Service Pack 1, Microsoft Exchange Server 2016...

7.1AI score0.0757EPSS
Exploits0References3
Prion
Prion
added 2015/03/11 10:59 a.m.25 views

Cross site scripting

Cross-site scripting XSS vulnerability in Outlook Web App OWA in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "ExchangeDLP Cross Site Scripting Vulnerability."...

4.3CVSS5.5AI score0.08876EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/03/11 10:0 a.m.67 views

CVE-2015-1631

CVE-2015-1631 : Affects Microsoft Exchange Server 2013 SP1 and CU7. The vulnerability involves failure to properly verify the meeting organizer’s identity when processing meeting requests, allowing remote attackers to spoof meeting organizers via forged meeting requests (the Exchange Forged Meeti...

5CVSS6.8AI score0.09146EPSS
Exploits0References2Affected Software1
Symantec
Symantec
added 2015/03/10 12:0 a.m.38 views

Microsoft Exchange Server Outlook Web Access CVE-2015-1628 Cross Site Scripting Vulnerability

Description Microsoft Exchange Server is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow...

4.3CVSS0.1AI score0.08876EPSS
Exploits0References1Affected Software1
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.47 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder