Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft exchange server 2010 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-8559
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access (OWA) handles web requests, aka "Microsoft Exchange Cross-Site...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
4.3
CVSSv2
CVE-2017-8560
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access (OWA) handles web requests, aka "Microsoft Exchange Cross-Site...
Microsoft Exchange Server 2016
Microsoft Exchange Server 2013
4.3
CVSSv2
CVE-2017-8537
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 20...
Microsoft Windows Defender -
Microsoft Endpoint Protection -
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Forefront Endpoint Protection -
Microsoft Forefront Endpoint Protection 2010
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection -
Microsoft Windows Intune Endpoint Protection
1 EDB exploit
1 Article
4.3
CVSSv2
CVE-2017-8535
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 20...
Microsoft Windows Defender -
Microsoft Endpoint Protection -
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Forefront Endpoint Protection -
Microsoft Forefront Endpoint Protection 2010
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection -
Microsoft Windows Intune Endpoint Protection
1 EDB exploit
1 Article
4.3
CVSSv2
CVE-2017-8536
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 20...
Microsoft Windows Defender -
Microsoft Endpoint Protection -
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Forefront Endpoint Protection -
Microsoft Forefront Endpoint Protection 2010
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection -
Microsoft Windows Intune Endpoint Protection
1 EDB exploit
1 Article
4.3
CVSSv2
CVE-2013-5072
Cross-site scripting (XSS) vulnerability in Outlook Web Access in Microsoft Exchange Server 2010 SP2 and SP3 and 2013 Cumulative Update 2 and 3 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "OWA XSS Vulnerability."
Microsoft Exchange Server 2010
Microsoft Exchange Server 2013
4
CVSSv2
CVE-2019-1084
An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display names, which, when added to conversati...
Microsoft Office 2019
Microsoft Office 2010
Microsoft Outlook 2013
Microsoft Outlook 2016
Microsoft Mail And Calendar -
Microsoft Exchange Server 2013
Microsoft Office 2013
Microsoft Office 2016
Microsoft Office 365 Proplus -
Microsoft Skype For Business 2016
Microsoft Exchange Server 2016
Microsoft Lync 2013
Microsoft Skype For Business Basic 2016
Microsoft Exchange Server 2010
Microsoft Lync Basic 2013
Microsoft Outlook -
1 Article
4
CVSSv2
CVE-2019-0588
An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants calendar contributors more view permissions than intended, aka "Microsoft Exchange Information Disclosure Vulnerability." This affects Microsoft Exchange Server.
Microsoft Exchange Server 2010
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
1 Article
4
CVSSv2
CVE-2016-0138
Microsoft Exchange Server 2007 SP3, 2010 SP3, 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative Update 13, 2016 Cumulative Update 1, and 2016 Cumulative Update 2 misparses e-mail messages, which allows remote authenticated users to obtain sensitive Outlook application informat...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2007
Microsoft Exchange Server 2010
4
CVSSv2
CVE-2010-3937
Microsoft Exchange Server 2007 SP2 on the x64 platform allows remote authenticated users to cause a denial of service (infinite loop and MSExchangeIS outage) via a crafted RPC request, aka "Exchange Server Infinite Loop Vulnerability."
Microsoft Exchange Server 2007
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »