Exchange Server Security Vulnerabilities and Issues — Exchange Server CVE List

Lucene search

MicrosoftExchange Server

5 matches found

CVE•added 2025/08/06 4:15 p.m.•57 views

CVE-2025-53786

On April 18th 2025, Microsoft announced Exchange Server Security Changes for Hybrid Deployments and accompanying non-security Hot Fix. Microsoft made these changes in the general interest of improving the security of hybrid Exchange deployments. Following further investigation, Microsoft identified...

8CVSS6.4AI score0.00075EPSS

In wild

CVE•added 2025/08/12 6:15 p.m.•24 views

CVE-2025-33051

Exposure of sensitive information to an unauthorized actor in Microsoft Exchange Server allows an unauthorized attacker to disclose information over a network.

7.5CVSS6.5AI score0.00085EPSS

CVE•added 2025/08/12 6:15 p.m.•13 views

CVE-2025-25005

Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network.

6.5CVSS7AI score0.00143EPSS

CVE•added 2025/08/12 6:15 p.m.•12 views

CVE-2025-25006

Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

5.3CVSS6.9AI score0.00064EPSS

CVE•added 2025/08/12 6:15 p.m.•11 views

CVE-2025-25007

Improper validation of syntactic correctness of input in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

5.3CVSS6.9AI score0.00082EPSS