Lucene search
+L

72 matches found

mskb
mskb
added 2 days ago7 views

Description of the security update for Microsoft Exchange Server 2016 CU23: July 14, 2026 (KB5103215)

None None...

9.6CVSS6.1AI score0.01652EPSS
Exploits0
kaspersky
kaspersky
added 2026/05/14 12:0 a.m.22 views

KLA91048 SUI vulnerability in Microsoft Products (ESU)

A spoofing vulnerability was found in Microsoft Microsoft Products Extended Security Update. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability...

8.1CVSS5.3AI score0.0564EPSS
Exploits1References3
mskb
mskb
added 2025/09/08 12:0 a.m.7 views

Hotfix update for Exchange Server 2016 CU23 HU18: September 8, 2025 (KB5066370)

None None...

6.1AI score
Exploits0
mskb
mskb
added 2025/08/12 7:0 a.m.15 views

Hotfix update for Exchange Server 2016 CU23: April 18, 2025 (KB5050674)

None None...

8CVSS7.1AI score0.07448EPSS
Exploits0
kaspersky
kaspersky
added 2024/11/12 12:0 a.m.17 views

KLA77113 SUI vulnerability in Microsoft Server Software

Security UI vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-49040 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related...

7.5CVSS8.6AI score0.07748EPSS
Exploits0References5
malwarebytes
malwarebytes
added 2024/10/21 7:11 a.m.12 views

A week in security (October 14 – October 20)

Last week on Malwarebytes Labs: Unauthorized data access vulnerability in macOS is detailed by Microsoft 23andMe will retain your genetic information, even if you delete the account "Nudify" deepfake bots remove clothes from victims in minutes, and millions are using them Tor Browser and Firefox...

7AI score
Exploits0
kaspersky
kaspersky
added 2023/11/14 12:0 a.m.40 views

KLA61978 Multiple vulnerabilities in Microsoft Server Software

Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Exchange Server can be exploited...

8CVSS8.8AI score0.86588EPSS
Exploits0References8
thn
thn
added 2022/09/30 9:1 a.m.185 views

Microsoft Confirms 2 New Exchange Zero-Day Flaws Being Used in the Wild

Microsoft officially disclosed it investigating two zero-day security vulnerabilities impacting Exchange Server 2013, 2016, and 2019 following reports of in-the-wild exploitation. "The first vulnerability, identified as CVE-2022-41040, is a Server-Side Request Forgery SSRF vulnerability, while th...

3.9AI score0.9997EPSS
Exploits16
malwarebytes
malwarebytes
added 2022/06/27 7:51 p.m.19 views

You only have nine months to ditch Exchange Server 2013

Microsoft has posted a reminder that Exchange Server 2013 reaches End of Support EoS on April 11, 2023. Thats a little more than 9 months from now. A useful and timely reminder, since we all realize that it takes some time to migrate to a different system. Every Windows product has a lifecycle. T...

7.6AI score
Exploits0
cnnvd
cnnvd
added 2022/01/11 12:0 a.m.9 views

Microsoft Exchange Server 安全漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. The following products and versions a...

9CVSS8.5AI score0.00927EPSS
Exploits0References3
cnnvd
cnnvd
added 2022/01/11 12:0 a.m.11 views

Microsoft Exchange Server 代码注入漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A code injection vulnerability exists in Microsoft Exchange Server. The followin...

9CVSS8.6AI score0.0106EPSS
Exploits0References3
kaspersky
kaspersky
added 2021/11/09 12:0 a.m.114 views

KLA12342 Multiple vulnerabilities in Microsoft Server Software

Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Exchange...

8.8CVSS8.6AI score0.93877EPSS
Exploits12References7
cnnvd
cnnvd
added 2021/10/12 12:0 a.m.6 views

Microsoft Exchange Server 输入验证错误漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. An input validation error vulnerability exists in Microsoft Exchange Server. The...

7.5CVSS7.5AI score0.02674EPSS
Exploits0References5
cnnvd
cnnvd
added 2021/10/12 12:0 a.m.19 views

Microsoft Exchange Server 权限许可和访问控制问题漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A vulnerability exists in Microsoft Exchange Server with privilege permission and access control...

9.6CVSS8.3AI score0.00872EPSS
Exploits0References5
mskb
mskb
added 2021/07/13 7:0 a.m.220 views

Cumulative Update 21 for Exchange Server 2016 (KB5003611)

None None...

8CVSS7AI score0.03265EPSS
Exploits0
cnnvd
cnnvd
added 2021/07/13 12:0 a.m.5 views

Microsoft Windows Remote Access Connection Manager 权限许可和访问控制问题漏洞

Microsoft Windows Remote Access Connection Manager is a Windows service from Microsoft that manages virtual private network VPN connections from your computer to the Internet. If you disable this service, the VPN client application If this service is disabled, VPN client applications will not...

8CVSS8.5AI score0.0116EPSS
Exploits0References5
cnnvd
cnnvd
added 2021/05/11 12:0 a.m.25 views

Microsoft Exchange Server 代码注入漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A code injection vulnerability exists in Microsoft Exchange Server. The followin...

8.8CVSS7.7AI score0.73676EPSS
Exploits3References4
mskb
mskb
added 2021/02/09 8:0 a.m.163 views

Cumulative Update 18 for Exchange Server 2016

None None...

9CVSS6.8AI score0.47145EPSS
Exploits5
zdt
zdt
added 2020/09/17 12:0 a.m.78 views

Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution Exploit

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exchange Server. Authentication is required to exploit this vulnerability. Additionally, the target user must have the "Data Loss Prevention" role assigned and an active mailbox. If the user is in th...

9CVSS0.2AI score0.47145EPSS
Exploits5
kaspersky
kaspersky
added 2019/07/09 12:0 a.m.50 views

KLA11820 Multiple vulnerabilities in Microsoft Apps

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Remote Desktop Protocol Client can be exploited remotely via special...

6.5CVSS8.2AI score0.10713EPSS
Exploits1References16
Rows per page
Query Builder