CVE-2024-21410

Known exploited
Microsoft Exchange Server Elevation of Privilege Vulnerability
Max CVSS
9.8
EPSS Score
8.12%
Published
2024-02-13
Updated
2024-04-11
CISA KEV Added
2024-02-15
Microsoft Exchange Server Elevation of Privilege Vulnerability
Max CVSS
9.8
EPSS Score
0.33%
Published
2023-08-08
Updated
2023-08-10

CVE-2022-41080

Known exploited
Used for ransomware
Microsoft Exchange Server Elevation of Privilege Vulnerability
Max CVSS
9.8
EPSS Score
1.85%
Published
2022-11-09
Updated
2023-06-13
CISA KEV Added
2023-01-10
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.20%
Published
2022-01-11
Updated
2023-12-21
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.20%
Published
2022-01-11
Updated
2023-12-21
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.20%
Published
2022-01-11
Updated
2023-12-21

CVE-2021-34523

Known exploited
Public exploit
Used for ransomware
Microsoft Exchange Server Elevation of Privilege Vulnerability
Max CVSS
9.8
EPSS Score
78.22%
Published
2021-07-14
Updated
2024-02-13
CISA KEV Added
2021-11-03

CVE-2021-34473

Known exploited
Public exploit
Used for ransomware
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
10.0
EPSS Score
97.32%
Published
2021-07-14
Updated
2023-12-28
CISA KEV Added
2021-11-03
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.55%
Published
2021-04-13
Updated
2023-12-29
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
1.26%
Published
2021-04-13
Updated
2023-12-29
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
10.0
EPSS Score
4.45%
Published
2021-04-13
Updated
2023-12-29
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
10.0
EPSS Score
4.45%
Published
2021-04-13
Updated
2023-12-29
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.1
EPSS Score
3.56%
Published
2021-03-03
Updated
2023-12-29

CVE-2021-26855

Known exploited
Public exploit
Used for ransomware
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.8
EPSS Score
97.51%
Published
2021-03-03
Updated
2024-02-15
CISA KEV Added
2021-11-03
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.6
EPSS Score
0.25%
Published
2021-10-13
Updated
2023-08-01
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.1
EPSS Score
3.56%
Published
2021-03-03
Updated
2023-12-29
Microsoft Exchange Remote Code Execution Vulnerability
Max CVSS
9.1
EPSS Score
3.53%
Published
2020-12-10
Updated
2023-12-30

CVE-2020-17132

Public exploit
Microsoft Exchange Remote Code Execution Vulnerability
Max CVSS
9.1
EPSS Score
3.53%
Published
2020-12-10
Updated
2023-12-30
Microsoft Exchange Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.99%
Published
2020-12-10
Updated
2023-12-30
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.0
EPSS Score
0.80%
Published
2020-11-11
Updated
2023-12-31

CVE-2020-16875

Public exploit
<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation of the vulnerability requires an authenticated user in a certain Exchange role to be compromised.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Exchange handles cmdlet arguments.</p>
Max CVSS
9.0
EPSS Score
58.15%
Published
2020-09-11
Updated
2023-12-31

CVE-2020-0688

Known exploited
Public exploit
Used for ransomware
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.
Max CVSS
9.0
EPSS Score
97.14%
Published
2020-02-11
Updated
2024-02-13
CISA KEV Added
2021-11-03
A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'.
Max CVSS
9.8
EPSS Score
4.52%
Published
2019-11-12
Updated
2019-11-14

CVE-2019-0724

Public exploit
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686.
Max CVSS
9.3
EPSS Score
7.63%
Published
2019-03-05
Updated
2020-08-24
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.
Max CVSS
10.0
EPSS Score
17.22%
Published
2019-01-08
Updated
2020-08-24
34 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!