Microsoft: >> Exchange Server >> 2016 Security Vulnerabilities
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
6.6
EPSS Score
0.161
Published
2021-03-03
CVE-2021-26855
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
9.1
EPSS Score
0.944
Published
2021-03-03
CVE-2021-26857
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.07
Published
2021-03-03
CVE-2021-26858
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.779
Published
2021-03-03
CVE-2021-27065
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.942
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.47
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.374
Published
2021-03-03
Microsoft Exchange Server Spoofing Vulnerability
CVSS Score
6.5
EPSS Score
0.18
Published
2021-02-25
<p>A spoofing vulnerability exists in Microsoft Exchange Server which could result in an attack that would allow a malicious actor to impersonate the user.</p>
<p>This update addresses this vulnerability.</p>
<p>To prevent these types of attacks, Microsoft recommends customers to download inline images from different DNSdomains than the rest of OWA. Please see further instructions in the FAQ to put in place this mitigations.</p>
CVSS Score
5.4
EPSS Score
0.033
Published
2021-02-25
Microsoft Exchange Server Information Disclosure Vulnerability
CVSS Score
8.8
EPSS Score
0.823
Published
2020-12-10