Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exchange server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-0030
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 PS1, 2013 Cumulative Update 10, and 2016 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Exchange Spoofing Vulnerability."
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
4.3
CVSSv2
CVE-2016-0032
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 PS1, 2013 Cumulative Update 10, 2013 Cumulative Update 11, and 2016 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Exchange Sp...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
6
CVSSv2
CVE-2020-17141
Microsoft Exchange Remote Code Execution Vulnerability
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
9
CVSSv2
CVE-2020-16875
<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation ...
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
2 Articles
10
CVSSv2
CVE-2019-0586
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
1 Article
NA
CVE-2022-41123
Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
1 Article
5.1
CVSSv2
CVE-2019-1136
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.
Microsoft Exchange Server 2010
Microsoft Exchange Server 2013
1 Article
7.5
CVSSv2
CVE-1999-0993
Modifications to ACLs (Access Control Lists) in Microsoft Exchange 5.5 do not take effect until the directory store cache is refreshed.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 5.0
NA
CVE-2023-35368
Microsoft Exchange Remote Code Execution Vulnerability
Microsoft Exchange Server 2019
Microsoft Exchange Server 2016
4.3
CVSSv2
CVE-2017-8559
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access (OWA) handles web requests, aka "Microsoft Exchange Cross-Site...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »