Lucene search
K
MicrosoftExchange Server

235 matches found

CVE
CVE
added 2021/03/02 11:55 p.m.3130 views

CVE-2021-26855

CVE-2021-26855 is an Exchange Server SSRF vulnerability that enables pre-auth access to Exchange backend and, when chained with CVE-2021-27065, can lead to remote code execution. Public exploitation activity and PoCs (e.g., Nmap http-vuln-cve2021-26855 scripts and curl demonstrations) illustrate ...

9.8CVSS9.5AI score0.99999EPSS
In wildWeb
CVE
CVE
added 2020/02/11 9:22 p.m.2669 views

CVE-2020-0688

CVE-2020-0688 is a remote-code-execution vulnerability in Microsoft Exchange Server. The issue centers on Exchange Control Panel/ViewState deserialization and improper handling of install-time validation keys, enabling an attacker to execute code on a vulnerable server. Public sources in the conn...

9CVSS8.5AI score0.99965EPSS
In wildWeb
CVE
CVE
added 2021/07/14 5:54 p.m.2394 views

CVE-2021-34473

CVE-2021-34473 is part of the ProxyShell chain affecting on-premises Microsoft Exchange Server. The vulnerability arises from pre-auth path confusion that bypasses ACLs, enabling pre-auth remote code execution when combined with CVE-2021-34523 and CVE-2021-31207 in the same exploit chain. Exploit...

10CVSS9.8AI score0.99999EPSS
In wild
CVE
CVE
added 2021/03/02 11:55 p.m.2029 views

CVE-2021-27065

CVE-2021-27065 is an Exchange Server vulnerability enabling remote code execution when paired with CVE-2021-26855 (SSRF). The connected documents describe Attackers chaining CVE-26855 (SSRF) with CVE-27065 to write a webshell via EWS/OWA endpoints, allowing unauthenticated or post-auth execution ...

7.8CVSS9.3AI score0.99946EPSS
In wild
CVE
CVE
added 2021/05/11 7:11 p.m.1889 views

CVE-2021-31207

CVE-2021-31207 is one of the ProxyShell chain affecting on-premises Microsoft Exchange Server, enabling post-auth arbitrary-file-write that can lead to remote code execution. Exploitation chains documented in FireEye and related advisories describe initial steps using Autodiscover and MAPI to lea...

6.6CVSS8.2AI score0.99782EPSS
In wild
CVE
CVE
added 2021/03/02 11:55 p.m.1866 views

CVE-2021-26858

CVE-2021-26858 (Microsoft Exchange Server) is discussed in connected material as a post-authentication issue enabling manipulation of voicemail header files. The AVLEONOV writeup explains a crafted header can be parsed to deserialize a malicious ContactInfo object, using a TypedBinaryFormatter wi...

7.8CVSS9.3AI score0.89509EPSS
In wild
CVE
CVE
added 2021/11/10 12:47 a.m.1781 views

CVE-2021-42321

CVE-2021-42321 (Microsoft Exchange Server RCE) is a post-authentication deserialization vulnerability in Exchange that can lead to RCE via a crafted SOAP request. Public writeups describe exploiting the chained binder deserialization path: TypedBinaryFormatter.DeserializeObject → ExchangeBinaryFo...

8.8CVSS9AI score0.90388EPSS
In wild
CVE
CVE
added 2021/07/14 5:54 p.m.1766 views

CVE-2021-34523

Microsoft Exchange Server on-premises is affected by ProxyShell chain implying CVE-2021-34523 as a local/elevation of privilege issue in the Exchange PowerShell backend. The exploit chain begins with pre-auth access via Autodiscover and MAPI to leak DN/SID, enabling impersonation and remote Power...

9.8CVSS9.6AI score0.99987EPSS
In wild
CVE
CVE
added 2021/03/02 11:55 p.m.1722 views

CVE-2021-26857

CVE-2021-26857 is an on‑premises Microsoft Exchange Server remote code execution vulnerability in the Unified Messaging deserialization path. The issue involves insecure deserialization of header data (ContactInfo) within voicemail processing, where an attacker could craft a Base64-encoded header...

7.8CVSS9.3AI score0.94008EPSS
In wild
CVE
CVE
added 2022/10/03 12:0 a.m.1611 views

CVE-2022-41040

CVE-2022-41040 is an Exchange Server SSRF vulnerability used to escalate privileges, often paired with CVE-2022-41082 for remote code execution (RCE). The vulnerability chain affects on‑premise Exchange Server deployments via the Autodiscover service, enabling an authenticated attacker to trigger...

8.8CVSS8.5AI score0.99945EPSS
In wildWeb
CVE
CVE
added 2022/10/03 12:0 a.m.1535 views

CVE-2022-41082

CVE-2022-41082 is the RCE component of Microsoft Exchange’s ProxyNotShell chain. It relies on a deserialization gadget in the PSRP backend that an authenticated attacker can reach after exploiting CVE-2022-41040 SSRF. Successful exploitation yields code execution as NT AUTHORITY\SYSTEM on vulnera...

8CVSS8.8AI score0.99964EPSS
In wild
CVE
CVE
added 2018/11/14 1:0 a.m.1181 views

CVE-2018-8581

CVE-2018-8581 is described as a Microsoft Exchange Server elevation of privilege vulnerability (PrivExchange). Connected documents include exploit/testing content showing a Maryland-style mailbox-Delegation approach to impersonate other users by manipulating inbox delegation, effectively enabling...

7.4CVSS7.4AI score0.27355EPSS
In wild
CVE
CVE
added 2021/07/14 5:53 p.m.1169 views

CVE-2021-33766

Technical details about CVE-2021-33766 are not publicly provided in the supplied documents. Monitor for updates from the referenced advisories; additional specifics (affected versions, exploitability, and fixes) are not available here.

7.5CVSS7AI score0.97502EPSS
In wild
CVE
CVE
added 2020/12/09 11:36 p.m.1148 views

CVE-2020-17144

CVE-2020-17144 is a deserialization vulnerability in Microsoft Exchange Server 2010 (MRM.AutoTag.Model) that can enable remote code execution. Public details from Attackerkb indicate exploitation requires authentication (e.g., via OWA EWS) and can execute OS commands with SYSTEM-level privileges;...

8.8CVSS8.8AI score0.36514EPSS
In wildWeb
CVE
CVE
added 2017/05/26 8:0 p.m.1007 views

CVE-2017-8540

CVE-2017-8540 affects Microsoft Malware Protection Engine (MMPE) across Forefront/Defender deployments. The weakness arises from a use-after-free in the garbage collection system managing JavaScript objects during scanning of specially crafted files, enabling memory corruption and potential remot...

9.3CVSS6.3AI score0.71961EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.824 views

CVE-2022-41080

CVE-2022-41080 is an Elevation of Privilege vulnerability in Microsoft Exchange Server. The connected sources describe it as an unspecified Exchange Privilege Escalation that is chainable with CVE-2022-41082 (which enables RCE). Public technical details in the provided documents are limited: no e...

9.8CVSS9.3AI score0.77326EPSS
In wild
CVE
CVE
added 2024/02/13 6:2 p.m.764 views

CVE-2024-21410

CVE-2024-21410 is a Microsoft Exchange Server Elevation of Privilege vulnerability with CVSS v3.1 base score 9.8 (CRITICAL). Affected products include Exchange Server 2016 CU23 and 2019 CU13/CU14. Public exploits exist; there are indications of exploitation in the wild per CISA KEV and vendor adv...

9.8CVSS9.6AI score0.12661EPSS
In wild
CVE
CVE
added 2025/12/09 5:55 p.m.633 views

CVE-2025-64667

CVE-2025-64667 is a Microsoft Exchange Server Spoofing Vulnerability caused by UI misrepresentation of critical information that could allow an unauthenticated attacker to spoof over the network. The issue is addressed by December 9, 2025 security updates on Exchange Server products (KB5071873 fo...

5.3CVSS6.1AI score0.00836EPSS
CVE
CVE
added 2021/07/14 5:53 p.m.611 views

CVE-2021-31206

CVE-2021-31206 is a Microsoft Exchange Server remote code execution vulnerability from the ProxyShell family. The connected documents confirm an exposed Exchange server could be compromised by exploiting ProxyShell vulnerabilities (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207) to gain initial a...

8CVSS8.8AI score0.09581EPSS
In wild
CVE
CVE
added 2024/03/12 4:57 p.m.526 views

CVE-2024-26198

CVE-2024-26198 is a Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources confirm exploitation context as a March 2024 issue with public patches released (e.g., KB5037224 for Exchange Server 2019 CU14 HU2 and CU13 HU6) and accompanying March 2024 security updates. The N...

8.8CVSS9.2AI score0.0682EPSS
CVE
CVE
added 2024/11/12 5:53 p.m.498 views

CVE-2024-49040

CVE-2024-49040 is a Microsoft Exchange Server spoofing vulnerability. The initial entry notes a NETWORK-exploit target with HIGH impact (CVSS 3.1: 7.5) and no user interaction. Connected documents corroborate Exchange spoofing context (e.g., CNVD/CVE references) but do not provide detailed affect...

7.5CVSS7.5AI score0.07748EPSS
CVE
CVE
added 2021/07/14 5:53 p.m.435 views

CVE-2021-31196

Technical details about CVE-2021-31196 are not publicly available in the provided connected documents. The materials describe a Microsoft Exchange Server vulnerability at a high level, but do not specify affected products, versions, root cause, or fixes. Monitor for updates.

7.2CVSS8.6AI score0.4638EPSS
In wild
CVE
CVE
added 2022/01/11 8:22 p.m.421 views

CVE-2022-21846

CVE-2022-21846 (Microsoft Exchange Server) is a remote code execution vulnerability in Exchange Server that stems from unsafe deserialization within the ExchangeCertificateRpc path. The RPC workflow can deserialize untrusted input via ExchangeCertificateRpc.DeserializeObject, which uses a BinaryF...

9CVSS9.4AI score0.0106EPSS
CVE
CVE
added 2021/04/13 7:33 p.m.406 views

CVE-2021-28480

CVE-2021-28480 is an Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources confirm it affects Exchange Server (2013/2016/2019) via a remote RCE with network access and no user interaction, indicating a pre-auth exploitation vector. Public PoCs/exploits exist in HoneyPoC...

10CVSS9.3AI score0.71425EPSS
In wild
CVE
CVE
added 2021/05/11 7:11 p.m.406 views

CVE-2021-31195

CVE-2021-31195 relates to Microsoft Exchange Server. Connected sources describe a cross-site scripting (XSS) vulnerability in the refurl parameter of frowny.asp (Microsoft Exchange Server / OWA). Exploitation could result in arbitrary script execution in the user’s browser, with potential for ses...

8.8CVSS7.7AI score0.73676EPSS
CVE
CVE
added 2008/10/21 12:0 a.m.384 views

CVE-2008-1547

Summary: CVE-2008-1547 is an open redirect vulnerability in exchweb/bin/redir.asp of Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (build 6.5.7638). An attacker can lure a logged-in user to click a URL parameter that redirects to an arbitrary site, enabling phishing via the redi...

4.3CVSS6.6AI score0.45927EPSS
Web
CVE
CVE
added 2020/12/09 11:36 p.m.368 views

CVE-2020-17132

CVE-2020-17132 is an Exchange Server remote code execution vulnerability tied to Microsoft Exchange Remote Code Execution. Connected sources indicate Microsoft Exchange Server is affected and describe an RCE vulnerability in Exchange Server, with remediation provided by the December 2020 security...

9.1CVSS9AI score0.8979EPSS
In wild
CVE
CVE
added 2021/02/25 11:1 p.m.368 views

CVE-2021-24085

Microsoft Exchange Server CVE-2021-24085 is a spoofing vulnerability described as a Cross-Site Request Forgery/elevation-of-privilege issue involving the msExchEcpCanary CSRF token. A PoC exploit and related tooling exist (e.g., a GitHub PoC titled 'Exploit for CVE-2021-24085'), demonstrating CSR...

6.5CVSS6.2AI score0.04627EPSS
CVE
CVE
added 2022/03/09 5:6 p.m.364 views

CVE-2022-23277

CVE-2022-23277 is a Microsoft Exchange Server remote code execution vulnerability. The connected sources indicate an RCE risk in Exchange Server reachable over the network that requires the attacker to authenticate and use a network call to execute arbitrary code on the server. Affected products ...

8.8CVSS8.8AI score0.40789EPSS
Web
CVE
CVE
added 2023/02/14 7:32 p.m.339 views

CVE-2023-21707

CVE-2023-21707 is a Microsoft Exchange Server remote code execution vulnerability, observed among a set of Exchange RCE flaws fixed in the February 14, 2023 update (KB5023038). The cited update confirms that three Exchange RCE flaws—CVE-2023-21529, CVE-2023-21706, CVE-2023-21707, and CVE-2023-217...

8.8CVSS9.3AI score0.8202EPSS
CVE
CVE
added 2022/01/11 8:22 p.m.338 views

CVE-2022-21855

CVE-2022-21855 is an Microsoft Exchange Server remote code execution vulnerability rooted in deserialization of RPC data via ExchangeCertificateRpc. The vulnerability chain involves ExchangeCertificateRpc.DeserializeObject feeding a byte[] payload into a BinaryFormatter through ExchangeBinaryForm...

9CVSS9.4AI score0.00927EPSS
CVE
CVE
added 2021/03/02 11:55 p.m.332 views

CVE-2021-26412

CVE-2021-26412 is an RCE vulnerability in Microsoft Exchange Server. Affected: Exchange Server installations exposed to attacker-controlled requests could allow remote code execution. Technical details in connected documents confirm: vulnerability type Remote Code Execution; affected product is M...

9.1CVSS9AI score0.30397EPSS
CVE
CVE
added 2020/02/11 9:23 p.m.323 views

CVE-2020-0692

Technical details about CVE-2020-0692 are not publicly available in the provided documents. The entries mention an Elevation of Privilege in Microsoft Exchange Server but do not specify affected components, versions, or remediation. Monitor for updates.

8.1CVSS7.9AI score0.03264EPSS
CVE
CVE
added 2021/07/14 5:54 p.m.314 views

CVE-2021-34470

CVE-2021-34470 is a Microsoft Exchange Server Elevation of Privilege vulnerability. Public docs indicate it is addressed by Exchange Cumulative Updates (e.g., KB5004778 for Exchange 2013 and KB5003611/KB5003612 for newer Exchange versions). Technical details on root cause and exploit specifics ar...

8CVSS8.6AI score0.03265EPSS
CVE
CVE
added 2020/09/11 5:8 p.m.313 views

CVE-2020-16875

CVE-2020-16875 (Microsoft Exchange Server) is a remote code execution vulnerability caused by improper validation of cmdlet arguments in Exchange. The issue allows an attacker who has an authenticated Exchange role to run arbitrary code with SYSTEM privileges by exploiting how cmdlet arguments ar...

9CVSS9.2AI score0.47145EPSS
In wildWeb
CVE
CVE
added 2022/01/11 8:23 p.m.298 views

CVE-2022-21969

CVE-2022-21969 is a Microsoft Exchange Server Remote Code Execution vulnerability identified in the Exchange certificate handling RPC path. The root cause described in the connected material centers on deserialization of crafted ExchangeCertificateRpc input via a BinaryFormatter-based chain (Exch...

9CVSS9.4AI score0.01217EPSS
In wild
CVE
CVE
added 2021/03/02 11:55 p.m.296 views

CVE-2021-26854

CVE-2021-26854 is a Microsoft Exchange Server remote code execution vulnerability. Public records in the provided documents identify it among Exchange-related CVEs and show affected products as Exchange Server 2013, 2016, and 2019. Remediation mentioned in the MS/KB context involves applying the ...

7.2CVSS8.3AI score0.19573EPSS
CVE
CVE
added 2023/11/14 5:57 p.m.293 views

CVE-2023-36439

CVE-2023-36439 pertains to Microsoft Exchange Server and represents a remote code execution vulnerability on Exchange Server. The vulnerability could allow an attacker who is authenticated to the target’s local network (e.g., via spear phishing credentials) to install malicious software on the se...

8CVSS7.9AI score0.04923EPSS
CVE
CVE
added 2022/08/09 7:47 p.m.281 views

CVE-2022-21980

CVE-2022-21980 is an Elevation of Privilege vulnerability in Microsoft Exchange Server. The connected Nessus entries identify this CVE as part of October 2022 Exchange updates (KB5019077) addressing multiple Exchange flaws, including CVE-2022-21980. No exploit details are provided in the connecte...

8CVSS7.7AI score0.01971EPSS
CVE
CVE
added 2019/07/15 6:56 p.m.274 views

CVE-2019-1084

CVE-2019-1084 affects Microsoft Exchange (display name creation with non-printable characters) leading to information disclosure. Root cause: display names with invalid characters bypass visibility controls and can be added to conversations; impact is partial confidentiality exposure per CVSS dat...

6.5CVSS5.3AI score0.05328EPSS
CVE
CVE
added 2023/02/14 7:33 p.m.273 views

CVE-2023-21529

CVE-2023-21529 is a Microsoft Exchange Server vulnerability described as Deserialization of Untrusted Data that enables remote code execution. Connected sources confirm: affected product is Microsoft Exchange Server; root cause involves deserialization of untrusted data; CVE is listed in KEV with...

8.8CVSS9.3AI score0.62104EPSS
In wild
CVE
CVE
added 2021/10/13 12:26 a.m.272 views

CVE-2021-26427

CVE-2021-26427 is a Microsoft Exchange Server remote code execution vulnerability. Exploitation requires adjacent-network access; patches were released in October 2021 (KB5007011/KB5007012) with mitigations and updated Exchange server builds. The connected KB entries confirm this CVE and its reme...

9.6CVSS8.4AI score0.00872EPSS
CVE
CVE
added 2022/08/09 7:47 p.m.271 views

CVE-2022-24477

CVE-2022-24477 is a Microsoft Exchange Server Elevation of Privilege vulnerability affecting Exchange Server 2013 CU23, 2016 CU22/23, and 2019 CU11/12. It stems from an incorrect call to a high‑level native procedure, enabling an authenticated attacker to elevate privileges and access mailboxes (...

8CVSS7.7AI score0.0166EPSS
CVE
CVE
added 2023/01/10 12:0 a.m.270 views

CVE-2023-21745

CVE-2023-21745 is a Microsoft Exchange Server spoofing vulnerability affecting multiple Exchange versions. The connected documents confirm it as a spoofing flaw in Exchange Server that was addressed via January 2023 security updates (KB5022143 for Exchange 2016 and KB5022193 for Exchange 2019). T...

8CVSS7.6AI score0.01497EPSS
CVE
CVE
added 2023/06/14 2:52 p.m.268 views

CVE-2023-32031

CVE-2023-32031 is an authenticated, network-exploitable Remote Code Execution in Microsoft Exchange Server. Sources describe it as a deserialization flaw in the Exchange Command class that can execute code with SYSTEM privileges via a network call after valid authentication. Public references not...

8.8CVSS9.1AI score0.81775EPSS
CVE
CVE
added 2021/11/10 12:47 a.m.266 views

CVE-2021-42305

CVE-2021-42305 is a Microsoft Exchange Server spoofing vulnerability affecting on‑premises Exchange Server deployments. Connected sources confirm it can be triggered remotely and does not require authentication, though exploitation reportedly requires user interaction. The vulnerability is discus...

6.5CVSS6.5AI score0.08109EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.266 views

CVE-2023-36745

CVE-2023-36745 is a Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources provide concrete exploit details: a GitHub repo labeled as a CVE-2023-36745 exploit (Deserialization of Untrusted Data in Microsoft), with a PoC and example commands to trigger RCE (PowerShell/DLL...

8CVSS7.9AI score0.81138EPSS
CVE
CVE
added 2021/11/10 12:46 a.m.265 views

CVE-2021-41349

CVE-2021-41349 is a Microsoft Exchange Server Spoofing Vulnerability affecting on‑premises Exchange Server installations. Public sources in the connected set show exploitation tools and PoCs (e.g., CSRF/HTML forms) publicly available, indicating practical abuse avenues. The vulnerability is descr...

6.5CVSS6.5AI score0.93877EPSS
CVE
CVE
added 2022/08/09 7:48 p.m.260 views

CVE-2022-30134

CVE-2022-30134 is documented as an Exchange Server vulnerability linked to August 2022 updates. Connected sources list affected products as Microsoft Exchange Server 2016 CU23, 2019 CU11/CU12, and 2019 CU12 variants, with the update KB5015322 describing it among vulnerabilities fixed in that roll...

6.5CVSS7.1AI score0.01637EPSS
CVE
CVE
added 2022/03/09 5:7 p.m.257 views

CVE-2022-24463

Microsoft Exchange Server vulnerability CVE-2022-24463 is a spoofing flaw affecting Exchange Server installations. Connected advisories describe that a remote attacker could impersonate a legitimate host to deceive users or systems. Public data references indicate affected products include Micros...

6.5CVSS6.6AI score0.3179EPSS
Total number of security vulnerabilities235