235 matches found
CVE-2021-26855
CVE-2021-26855 is an Exchange Server SSRF vulnerability that enables pre-auth access to Exchange backend and, when chained with CVE-2021-27065, can lead to remote code execution. Public exploitation activity and PoCs (e.g., Nmap http-vuln-cve2021-26855 scripts and curl demonstrations) illustrate ...
CVE-2020-0688
CVE-2020-0688 is a remote-code-execution vulnerability in Microsoft Exchange Server. The issue centers on Exchange Control Panel/ViewState deserialization and improper handling of install-time validation keys, enabling an attacker to execute code on a vulnerable server. Public sources in the conn...
CVE-2021-34473
CVE-2021-34473 is part of the ProxyShell chain affecting on-premises Microsoft Exchange Server. The vulnerability arises from pre-auth path confusion that bypasses ACLs, enabling pre-auth remote code execution when combined with CVE-2021-34523 and CVE-2021-31207 in the same exploit chain. Exploit...
CVE-2021-27065
CVE-2021-27065 is an Exchange Server vulnerability enabling remote code execution when paired with CVE-2021-26855 (SSRF). The connected documents describe Attackers chaining CVE-26855 (SSRF) with CVE-27065 to write a webshell via EWS/OWA endpoints, allowing unauthenticated or post-auth execution ...
CVE-2021-31207
CVE-2021-31207 is one of the ProxyShell chain affecting on-premises Microsoft Exchange Server, enabling post-auth arbitrary-file-write that can lead to remote code execution. Exploitation chains documented in FireEye and related advisories describe initial steps using Autodiscover and MAPI to lea...
CVE-2021-26858
CVE-2021-26858 (Microsoft Exchange Server) is discussed in connected material as a post-authentication issue enabling manipulation of voicemail header files. The AVLEONOV writeup explains a crafted header can be parsed to deserialize a malicious ContactInfo object, using a TypedBinaryFormatter wi...
CVE-2021-42321
CVE-2021-42321 (Microsoft Exchange Server RCE) is a post-authentication deserialization vulnerability in Exchange that can lead to RCE via a crafted SOAP request. Public writeups describe exploiting the chained binder deserialization path: TypedBinaryFormatter.DeserializeObject → ExchangeBinaryFo...
CVE-2021-34523
Microsoft Exchange Server on-premises is affected by ProxyShell chain implying CVE-2021-34523 as a local/elevation of privilege issue in the Exchange PowerShell backend. The exploit chain begins with pre-auth access via Autodiscover and MAPI to leak DN/SID, enabling impersonation and remote Power...
CVE-2021-26857
CVE-2021-26857 is an on‑premises Microsoft Exchange Server remote code execution vulnerability in the Unified Messaging deserialization path. The issue involves insecure deserialization of header data (ContactInfo) within voicemail processing, where an attacker could craft a Base64-encoded header...
CVE-2022-41040
CVE-2022-41040 is an Exchange Server SSRF vulnerability used to escalate privileges, often paired with CVE-2022-41082 for remote code execution (RCE). The vulnerability chain affects on‑premise Exchange Server deployments via the Autodiscover service, enabling an authenticated attacker to trigger...
CVE-2022-41082
CVE-2022-41082 is the RCE component of Microsoft Exchange’s ProxyNotShell chain. It relies on a deserialization gadget in the PSRP backend that an authenticated attacker can reach after exploiting CVE-2022-41040 SSRF. Successful exploitation yields code execution as NT AUTHORITY\SYSTEM on vulnera...
CVE-2018-8581
CVE-2018-8581 is described as a Microsoft Exchange Server elevation of privilege vulnerability (PrivExchange). Connected documents include exploit/testing content showing a Maryland-style mailbox-Delegation approach to impersonate other users by manipulating inbox delegation, effectively enabling...
CVE-2021-33766
Technical details about CVE-2021-33766 are not publicly provided in the supplied documents. Monitor for updates from the referenced advisories; additional specifics (affected versions, exploitability, and fixes) are not available here.
CVE-2020-17144
CVE-2020-17144 is a deserialization vulnerability in Microsoft Exchange Server 2010 (MRM.AutoTag.Model) that can enable remote code execution. Public details from Attackerkb indicate exploitation requires authentication (e.g., via OWA EWS) and can execute OS commands with SYSTEM-level privileges;...
CVE-2017-8540
CVE-2017-8540 affects Microsoft Malware Protection Engine (MMPE) across Forefront/Defender deployments. The weakness arises from a use-after-free in the garbage collection system managing JavaScript objects during scanning of specially crafted files, enabling memory corruption and potential remot...
CVE-2022-41080
CVE-2022-41080 is an Elevation of Privilege vulnerability in Microsoft Exchange Server. The connected sources describe it as an unspecified Exchange Privilege Escalation that is chainable with CVE-2022-41082 (which enables RCE). Public technical details in the provided documents are limited: no e...
CVE-2024-21410
CVE-2024-21410 is a Microsoft Exchange Server Elevation of Privilege vulnerability with CVSS v3.1 base score 9.8 (CRITICAL). Affected products include Exchange Server 2016 CU23 and 2019 CU13/CU14. Public exploits exist; there are indications of exploitation in the wild per CISA KEV and vendor adv...
CVE-2025-64667
CVE-2025-64667 is a Microsoft Exchange Server Spoofing Vulnerability caused by UI misrepresentation of critical information that could allow an unauthenticated attacker to spoof over the network. The issue is addressed by December 9, 2025 security updates on Exchange Server products (KB5071873 fo...
CVE-2021-31206
CVE-2021-31206 is a Microsoft Exchange Server remote code execution vulnerability from the ProxyShell family. The connected documents confirm an exposed Exchange server could be compromised by exploiting ProxyShell vulnerabilities (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207) to gain initial a...
CVE-2024-26198
CVE-2024-26198 is a Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources confirm exploitation context as a March 2024 issue with public patches released (e.g., KB5037224 for Exchange Server 2019 CU14 HU2 and CU13 HU6) and accompanying March 2024 security updates. The N...
CVE-2024-49040
CVE-2024-49040 is a Microsoft Exchange Server spoofing vulnerability. The initial entry notes a NETWORK-exploit target with HIGH impact (CVSS 3.1: 7.5) and no user interaction. Connected documents corroborate Exchange spoofing context (e.g., CNVD/CVE references) but do not provide detailed affect...
CVE-2021-31196
Technical details about CVE-2021-31196 are not publicly available in the provided connected documents. The materials describe a Microsoft Exchange Server vulnerability at a high level, but do not specify affected products, versions, root cause, or fixes. Monitor for updates.
CVE-2022-21846
CVE-2022-21846 (Microsoft Exchange Server) is a remote code execution vulnerability in Exchange Server that stems from unsafe deserialization within the ExchangeCertificateRpc path. The RPC workflow can deserialize untrusted input via ExchangeCertificateRpc.DeserializeObject, which uses a BinaryF...
CVE-2021-28480
CVE-2021-28480 is an Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources confirm it affects Exchange Server (2013/2016/2019) via a remote RCE with network access and no user interaction, indicating a pre-auth exploitation vector. Public PoCs/exploits exist in HoneyPoC...
CVE-2021-31195
CVE-2021-31195 relates to Microsoft Exchange Server. Connected sources describe a cross-site scripting (XSS) vulnerability in the refurl parameter of frowny.asp (Microsoft Exchange Server / OWA). Exploitation could result in arbitrary script execution in the user’s browser, with potential for ses...
CVE-2008-1547
Summary: CVE-2008-1547 is an open redirect vulnerability in exchweb/bin/redir.asp of Microsoft Outlook Web Access (OWA) for Exchange Server 2003 SP2 (build 6.5.7638). An attacker can lure a logged-in user to click a URL parameter that redirects to an arbitrary site, enabling phishing via the redi...
CVE-2020-17132
CVE-2020-17132 is an Exchange Server remote code execution vulnerability tied to Microsoft Exchange Remote Code Execution. Connected sources indicate Microsoft Exchange Server is affected and describe an RCE vulnerability in Exchange Server, with remediation provided by the December 2020 security...
CVE-2021-24085
Microsoft Exchange Server CVE-2021-24085 is a spoofing vulnerability described as a Cross-Site Request Forgery/elevation-of-privilege issue involving the msExchEcpCanary CSRF token. A PoC exploit and related tooling exist (e.g., a GitHub PoC titled 'Exploit for CVE-2021-24085'), demonstrating CSR...
CVE-2022-23277
CVE-2022-23277 is a Microsoft Exchange Server remote code execution vulnerability. The connected sources indicate an RCE risk in Exchange Server reachable over the network that requires the attacker to authenticate and use a network call to execute arbitrary code on the server. Affected products ...
CVE-2023-21707
CVE-2023-21707 is a Microsoft Exchange Server remote code execution vulnerability, observed among a set of Exchange RCE flaws fixed in the February 14, 2023 update (KB5023038). The cited update confirms that three Exchange RCE flaws—CVE-2023-21529, CVE-2023-21706, CVE-2023-21707, and CVE-2023-217...
CVE-2022-21855
CVE-2022-21855 is an Microsoft Exchange Server remote code execution vulnerability rooted in deserialization of RPC data via ExchangeCertificateRpc. The vulnerability chain involves ExchangeCertificateRpc.DeserializeObject feeding a byte[] payload into a BinaryFormatter through ExchangeBinaryForm...
CVE-2021-26412
CVE-2021-26412 is an RCE vulnerability in Microsoft Exchange Server. Affected: Exchange Server installations exposed to attacker-controlled requests could allow remote code execution. Technical details in connected documents confirm: vulnerability type Remote Code Execution; affected product is M...
CVE-2020-0692
Technical details about CVE-2020-0692 are not publicly available in the provided documents. The entries mention an Elevation of Privilege in Microsoft Exchange Server but do not specify affected components, versions, or remediation. Monitor for updates.
CVE-2021-34470
CVE-2021-34470 is a Microsoft Exchange Server Elevation of Privilege vulnerability. Public docs indicate it is addressed by Exchange Cumulative Updates (e.g., KB5004778 for Exchange 2013 and KB5003611/KB5003612 for newer Exchange versions). Technical details on root cause and exploit specifics ar...
CVE-2020-16875
CVE-2020-16875 (Microsoft Exchange Server) is a remote code execution vulnerability caused by improper validation of cmdlet arguments in Exchange. The issue allows an attacker who has an authenticated Exchange role to run arbitrary code with SYSTEM privileges by exploiting how cmdlet arguments ar...
CVE-2022-21969
CVE-2022-21969 is a Microsoft Exchange Server Remote Code Execution vulnerability identified in the Exchange certificate handling RPC path. The root cause described in the connected material centers on deserialization of crafted ExchangeCertificateRpc input via a BinaryFormatter-based chain (Exch...
CVE-2021-26854
CVE-2021-26854 is a Microsoft Exchange Server remote code execution vulnerability. Public records in the provided documents identify it among Exchange-related CVEs and show affected products as Exchange Server 2013, 2016, and 2019. Remediation mentioned in the MS/KB context involves applying the ...
CVE-2023-36439
CVE-2023-36439 pertains to Microsoft Exchange Server and represents a remote code execution vulnerability on Exchange Server. The vulnerability could allow an attacker who is authenticated to the target’s local network (e.g., via spear phishing credentials) to install malicious software on the se...
CVE-2022-21980
CVE-2022-21980 is an Elevation of Privilege vulnerability in Microsoft Exchange Server. The connected Nessus entries identify this CVE as part of October 2022 Exchange updates (KB5019077) addressing multiple Exchange flaws, including CVE-2022-21980. No exploit details are provided in the connecte...
CVE-2019-1084
CVE-2019-1084 affects Microsoft Exchange (display name creation with non-printable characters) leading to information disclosure. Root cause: display names with invalid characters bypass visibility controls and can be added to conversations; impact is partial confidentiality exposure per CVSS dat...
CVE-2023-21529
CVE-2023-21529 is a Microsoft Exchange Server vulnerability described as Deserialization of Untrusted Data that enables remote code execution. Connected sources confirm: affected product is Microsoft Exchange Server; root cause involves deserialization of untrusted data; CVE is listed in KEV with...
CVE-2021-26427
CVE-2021-26427 is a Microsoft Exchange Server remote code execution vulnerability. Exploitation requires adjacent-network access; patches were released in October 2021 (KB5007011/KB5007012) with mitigations and updated Exchange server builds. The connected KB entries confirm this CVE and its reme...
CVE-2022-24477
CVE-2022-24477 is a Microsoft Exchange Server Elevation of Privilege vulnerability affecting Exchange Server 2013 CU23, 2016 CU22/23, and 2019 CU11/12. It stems from an incorrect call to a high‑level native procedure, enabling an authenticated attacker to elevate privileges and access mailboxes (...
CVE-2023-21745
CVE-2023-21745 is a Microsoft Exchange Server spoofing vulnerability affecting multiple Exchange versions. The connected documents confirm it as a spoofing flaw in Exchange Server that was addressed via January 2023 security updates (KB5022143 for Exchange 2016 and KB5022193 for Exchange 2019). T...
CVE-2023-32031
CVE-2023-32031 is an authenticated, network-exploitable Remote Code Execution in Microsoft Exchange Server. Sources describe it as a deserialization flaw in the Exchange Command class that can execute code with SYSTEM privileges via a network call after valid authentication. Public references not...
CVE-2021-42305
CVE-2021-42305 is a Microsoft Exchange Server spoofing vulnerability affecting on‑premises Exchange Server deployments. Connected sources confirm it can be triggered remotely and does not require authentication, though exploitation reportedly requires user interaction. The vulnerability is discus...
CVE-2023-36745
CVE-2023-36745 is a Microsoft Exchange Server Remote Code Execution vulnerability. Connected sources provide concrete exploit details: a GitHub repo labeled as a CVE-2023-36745 exploit (Deserialization of Untrusted Data in Microsoft), with a PoC and example commands to trigger RCE (PowerShell/DLL...
CVE-2021-41349
CVE-2021-41349 is a Microsoft Exchange Server Spoofing Vulnerability affecting on‑premises Exchange Server installations. Public sources in the connected set show exploitation tools and PoCs (e.g., CSRF/HTML forms) publicly available, indicating practical abuse avenues. The vulnerability is descr...
CVE-2022-30134
CVE-2022-30134 is documented as an Exchange Server vulnerability linked to August 2022 updates. Connected sources list affected products as Microsoft Exchange Server 2016 CU23, 2019 CU11/CU12, and 2019 CU12 variants, with the update KB5015322 describing it among vulnerabilities fixed in that roll...
CVE-2022-24463
Microsoft Exchange Server vulnerability CVE-2022-24463 is a spoofing flaw affecting Exchange Server installations. Connected advisories describe that a remote attacker could impersonate a legitimate host to deceive users or systems. Public data references indicate affected products include Micros...