Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exchange server vulnerabilities and exploits
(subscribe to this query)
5.2
CVSSv2
CVE-2021-41348
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
4.3
CVSSv2
CVE-2021-41350
Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
6
CVSSv2
CVE-2021-24085
Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
1 Github repository
NA
CVE-2022-34692
Microsoft Exchange Server Information Disclosure Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
6.8
CVSSv2
CVE-2007-0220
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2000 SP3, and 2003 SP1 and SP2 allows remote malicious users to execute arbitrary scripts, spoof content, or obtain sensitive information via certain UTF-encoded, script-based e-mail...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
6.5
CVSSv2
CVE-2021-42321
Microsoft Exchange Server Remote Code Execution Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
4 Github repositories
2 Articles
3.5
CVSSv2
CVE-2020-0903
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'.
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
1 Article
7.5
CVSSv2
CVE-1999-0993
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 5.0
7.5
CVSSv2
CVE-2005-0560
Heap-based buffer overflow in the SvrAppendReceivedChunk function in xlsasink.dll in the SMTP service of Exchange Server 2000 and 2003 allows remote malicious users to execute arbitrary code via a crafted X-LINK2STATE extended verb request to the SMTP port.
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
1 EDB exploit
7.5
CVSSv2
CVE-2006-0027
Unspecified vulnerability in Microsoft Exchange allows remote malicious users to execute arbitrary code via e-mail messages with crafted (1) vCal or (2) iCal Calendar properties.
Microsoft Exchange Server 2003
Microsoft Exchange Server 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »