Microsoft: >> Exchange Server Security Vulnerabilities
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
6.6
EPSS Score
0.196
Published
2021-03-03
CVE-2021-26855
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
9.1
EPSS Score
1.0
Published
2021-03-03
CVE-2021-26857
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.94
Published
2021-03-03
CVE-2021-26858
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.895
Published
2021-03-03
CVE-2021-27065
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.999
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.183
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.304
Published
2021-03-03
Microsoft Exchange Server Spoofing Vulnerability
CVSS Score
6.5
EPSS Score
0.046
Published
2021-02-25
<p>A spoofing vulnerability exists in Microsoft Exchange Server which could result in an attack that would allow a malicious actor to impersonate the user.</p>
<p>This update addresses this vulnerability.</p>
<p>To prevent these types of attacks, Microsoft recommends customers to download inline images from different DNSdomains than the rest of OWA. Please see further instructions in the FAQ to put in place this mitigations.</p>
CVSS Score
5.4
EPSS Score
0.018
Published
2021-02-25
Microsoft Exchange Server Information Disclosure Vulnerability
CVSS Score
8.8
EPSS Score
0.706
Published
2020-12-10