5 matches found
Security Updates for Exchange (October 2022)
The Microsoft Exchange Server installed on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2022-21979,CVE-2022-30134,...
Security Updates for Exchange (August 2022)
The Microsoft Exchange Server installed on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2022-21979,CVE-2022-30134,...
CVE-2022-24477
CVE-2022-24477 is a Microsoft Exchange Server Elevation of Privilege vulnerability affecting Exchange Server 2013 CU23, 2016 CU22/23, and 2019 CU11/12. It stems from an incorrect call to a high‑level native procedure, enabling an authenticated attacker to elevate privileges and access mailboxes (...
CVE-2022-24477 Microsoft Exchange Server Elevation of Privilege Vulnerability
...
Vulnerabilities fixed in Microsoft Exchange Server
Vulnerabilities have been fixed in Microsoft Exchange Server. The vulnerabilities allow a malicious party to gain access to sensitive data or obtain elevated privileges. The vulnerability with reference CVE-2022-24477 allows an authenticated malicious person to gain access to mailboxes of other...