7 matches found
Update now! February's Patch Tuesday tackles three zero-days
The Patch Tuesday roundup from Microsoft for February 2023 includes three zero-days. Not exactly what we had in mind for Valentine's Day. Microsoft classifies a vulnerability as a zero-day if it is publicly disclosed or actively exploited with no official fix available. As far as we can tell, onl...
CVE-2023-21706
Microsoft Exchange Server Remote Code Execution Vulnerability...
CVE-2023-21706
Microsoft Exchange Server Remote Code Execution Vulnerability...
CVE-2023-21706 Microsoft Exchange Server Remote Code Execution Vulnerability
...
CVE-2023-21706
CVE-2023-21706 is a Microsoft Exchange Server remote code execution vulnerability. The linked KB5023038 security update (Feb 14, 2023) patches Exchange Server 2019 CU12 SU6, 2019 CU11 SU10, 2016 CU23 SU6, and 2013 CU23 SU20, among others. The description here confirms it is a remote code executio...
KLA20232 Multiple vulnerabilities in Microsoft Server Software
Remote code execution vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to execute arbitrary code. Original advisories CVE-2023-21707 CVE-2023-21710 CVE-2023-21529 CVE-2023-21706 Exploitation Public exploits exist for this vulnerability...
Security Updates for Microsoft Exchange Server (February 2023)
The Microsoft Exchange Server installed on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities as referenced in the Feb, 2023 security bulletin. - Microsoft Exchange Server Remote Code Execution Vulnerability CVE-2023-21529, CVE-2023-21706,...