Microsoft » Exchange Server » 2019 cumulative_update_2 : Security Vulnerabilities, CVEs,
Microsoft Exchange Server Information Disclosure Vulnerability
Max CVSS
5.7
EPSS Score
0.17%
Published
2023-09-12
Updated
2023-09-14
Microsoft Exchange Server Elevation of Privilege Vulnerability
Max CVSS
9.8
EPSS Score
0.33%
Published
2023-08-08
Updated
2023-08-10
CVE-2021-27065
Known exploited
Public exploit
Used for ransomware
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
7.8
EPSS Score
96.36%
Published
2021-03-03
Updated
2023-12-29
CISA KEV Added
2021-11-03
CVE-2021-26855
Known exploited
Public exploit
Used for ransomware
Microsoft Exchange Server Remote Code Execution Vulnerability
Max CVSS
9.8
EPSS Score
97.51%
Published
2021-03-03
Updated
2024-02-15
CISA KEV Added
2021-11-03
A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'.
Max CVSS
9.8
EPSS Score
4.52%
Published
2019-11-12
Updated
2019-11-14
A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web App (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'.
Max CVSS
6.1
EPSS Score
0.10%
Published
2019-09-11
Updated
2020-08-24
A denial of service vulnerability exists in Microsoft Exchange Server software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Denial of Service Vulnerability'.
Max CVSS
7.8
EPSS Score
0.20%
Published
2019-09-11
Updated
2020-08-24
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'.
Max CVSS
5.4
EPSS Score
0.07%
Published
2019-07-15
Updated
2020-04-09
8 vulnerabilities found