Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•35 views

Microsoft Office Visio DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS5.2AI score0.00815EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•26 views

Microsoft Office Visio DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS5.2AI score0.0072EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•43 views

Canon imageCLASS MF644Cdw BJNP Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the BJNP service. The issue results from the lack of proper...

8.8CVSS5.3AI score0.0083EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•29 views

Trend Micro Apex One Damage Cleanup Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS5.1AI score0.003EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•29 views

Microsoft Office Visio DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS5.5AI score0.0072EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•42 views

Microsoft Office Visio DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS5.2AI score0.00815EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/15 12:0 a.m.•33 views

Microsoft Excel SKP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SKP...

7.8CVSS5.4AI score0.008EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•25 views

Foxit PDF Reader U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3...

7.8CVSS4.3AI score0.01091EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•30 views

Foxit PDF Reader U3D File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

3.3CVSS2.7AI score0.00956EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•25 views

SolarWinds Network Performance Monitor WebUserSettingsCrudHandler Improper Input Validation Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the CheckWhetherNonAdminAttemptsToModifyBlacklistedRecords function. The...

8.8CVSS2.8AI score0.0089EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•32 views

SolarWinds Network Performance Monitor GetPdf Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute code on affected installations of SolarWinds Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetPdf function. The issue results from the lack of proper validation of a...

7.2CVSS2.3AI score0.0901EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•29 views

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

3.3CVSS3AI score0.00929EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•29 views

Foxit PDF Reader U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3...

7.8CVSS4.3AI score0.01091EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•26 views

SolarWinds Network Performance Monitor DeserializeFromStrippedXml Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the DeserializeFromStrippedXml function. The issue results from the...

8.8CVSS3.3AI score0.16813EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•27 views

Foxit PDF Reader U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3...

7.8CVSS4.3AI score0.01091EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•16 views

(Pwn2Own) Microsoft Teams chat Client-Side Template Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Teams. No user interaction is required if the attacker and target are in the same Teams organization. The specific flaw exists within the rendering of chat messages. Crafted data in a chat...

6.3CVSS3.5AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•37 views

Microsoft Exchange RecipientProvisioningDefinition External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the RecipientProvisioningDefinition class. Due to the improper restriction of XML...

7.1CVSS1.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•36 views

Microsoft Exchange PstStatusLog Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the PstStatusLog class. The issue results from the exposure of a dangerous...

7.6CVSS1.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•32 views

Microsoft Exchange GsmWriter Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the GsmWriter class. The issue results from the exposure of a dangerous...

7.6CVSS2.1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•55 views

Microsoft Exchange DumpDataReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the DumpDataReader class. The issue results from the exposure of a dangerous...

4.3CVSS1.2AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•29 views

Microsoft Exchange PcmReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the PcmReader class. The issue results from the exposure of a dangerous function...

4.3CVSS1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•31 views

Microsoft Exchange EtwFile Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the EtwFile class. The issue results from the exposure of a dangerous function. A...

4.3CVSS1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•29 views

Microsoft Exchange AppConfigAssemblyResolver Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the AppConfigAssemblyResolver class. The issue results from the exposure of a...

4.3CVSS0.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•42 views

Microsoft Exchange G711Reader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the G711Reader class. The issue results from the exposure of a dangerous function...

4.3CVSS1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•33 views

Microsoft Exchange GsmReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the GsmReader class. The issue results from the exposure of a dangerous function...

4.3CVSS1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•29 views

Microsoft Exchange PdbReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the PdbReader class. The issue results from the exposure of a dangerous function...

4.3CVSS1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•40 views

Microsoft Exchange DagNetMultiValuedProperty Exposed Dangerous Function Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the DagNetMultiValuedProperty class. The issue results from the exposure of a dangerous...

8.8CVSS3.3AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•23 views

Microsoft Exchange ScriptingAgentConfiguration Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the ScriptingAgentConfiguration class. The issue results from the exposure of a...

4.3CVSS0.3AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•32 views

Microsoft Exchange TraceFile Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the TraceFile class. The issue results from the exposure of a dangerous function...

4.3CVSS0.7AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•30 views

Microsoft Exchange Command Exposed Dangerous Function Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the Command class. The issue results from the exposure of a dangerous function. An attack...

8.8CVSS3.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•23 views

Microsoft Exchange FlatFileTraceListener Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FlatFileTraceListener class. The issue results from the exposure of a...

7.1CVSS1.6AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•52 views

Microsoft Exchange FileLog Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files and create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FileLog class. The issue results from the...

7.6CVSS2.1AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•24 views

Microsoft Exchange WmaReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the WmaReader class. The issue results from the exposure of a dangerous function...

4.3CVSS0.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•24 views

Microsoft Exchange OrganizationInitializationDefinition External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the OrganizationInitializationDefinition class. Due to the improper restriction o...

7.1CVSS2.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•31 views

Microsoft Exchange MsgStorageWriter Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the MsgStorageWriter class. The issue results from the exposure of a...

7.6CVSS1.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•31 views

Microsoft Exchange PEFile Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the PEFile class. The issue results from the exposure of a dangerous function. An...

4.3CVSS0.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•25 views

Microsoft Exchange MatlabWriter Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the MatlabWriter class. The issue results from the exposure of a dangerous...

7.6CVSS1.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•32 views

Microsoft Exchange FileHandler Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FileHandler class. The issue results from the exposure of a dangerous functio...

4.3CVSS0.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•35 views

Microsoft Exchange FileDependency Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FileDependency class. The issue results from the exposure of a dangerous...

4.3CVSS0.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•51 views

Microsoft Exchange DumpReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the DumpReader class. The issue results from the exposure of a dangerous function...

4.3CVSS1.3AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•35 views

Microsoft Exchange DbgEngDataReader Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the DbgEngDataReader class. The issue results from the exposure of a dangerous...

4.3CVSS0.8AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•36 views

Microsoft Exchange FormattedTextWriterTraceListener Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FormattedTextWriterTraceListener class. The issue results from the...

7.1CVSS1.4AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•51 views

Microsoft Exchange FileConfigurationSource Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the FileConfigurationSource class. The issue results from the exposure of a...

4.3CVSS0.6AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•36 views

Microsoft Exchange MsiDatabase Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the MsiDatabase class. The issue results from the exposure of a dangerous functio...

4.3CVSS0.9AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•36 views

Microsoft Exchange PromptPreviewRpcResponse Exposed Dangerous Function Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the PromptPreviewRpcResponse class. The issue results from the exposure of a...

4.3CVSS0.6AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/22 12:0 a.m.•36 views

Microsoft Exchange StreamWriterWrapper Exposed Dangerous Function Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Exchange. Authentication is required to exploit this vulnerability. The specific flaw exists within the StreamWriterWrapper class. The issue results from the exposure of a...

7.6CVSS1.6AI score0.9997EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/21 12:0 a.m.•37 views

Trend Micro Apex One Unauthorized Change Prevention Service Out-Of-Bounds Access Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7CVSS5.2AI score0.00349EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/21 12:0 a.m.•28 views

Microsoft Word FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FBX...

7.8CVSS5.7AI score0.00804EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/21 12:0 a.m.•33 views

TP-Link TL-WR940N httpd Use of Insufficiently Random Values Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of TP-Link TL-WR940N routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue...

7.5CVSS1.3AI score0.00905EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/11/21 12:0 a.m.•33 views

Microsoft Exchange TorusTryAccessCheck Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Exchange. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS3.9AI score0.00571EPSS
Exploits0References1
Total number of security vulnerabilities16763