Vulnerability Details CVE-2017-8621
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an open redirect vulnerability that could lead to spoofing, aka "Microsoft Exchange Open Redirect Vulnerability".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.6%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 5.8
References
- http://www.securityfocus.com/bid/99533
- http://www.securitytracker.com/id/1038852
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8621
- http://www.securityfocus.com/bid/99533
- http://www.securitytracker.com/id/1038852
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8621
Products affected by CVE-2017-8621
-
cpe:2.3:a:microsoft:exchange_server:2010
-
cpe:2.3:a:microsoft:exchange_server:2013
-
cpe:2.3:a:microsoft:exchange_server:2016