Vulnerability Details CVE-2018-0941
Microsoft Exchange Server 2016 Cumulative Update 7 and Microsoft Exchange Server 2016 Cumulative Update 8 allow an information disclosure vulnerability due to how data is imported, aka "Microsoft Exchange Information Disclosure Vulnerability". This CVE is unique from CVE-2018-0924.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.21
EPSS Ranking 95.4%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- http://www.securityfocus.com/bid/103318
- http://www.securitytracker.com/id/1040521
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0941
- http://www.securityfocus.com/bid/103318
- http://www.securitytracker.com/id/1040521
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0941
Products affected by CVE-2018-0941
-
cpe:2.3:a:microsoft:exchange_server:2016