Microsoft: >> Exchange Server >> 2016 Security Vulnerabilities
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.0
EPSS Score
0.006
Published
2021-04-13
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
6.6
EPSS Score
0.049
Published
2021-03-03
CVE-2021-26855
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
9.1
EPSS Score
0.943
Published
2021-03-03
CVE-2021-26857
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.405
Published
2021-03-03
CVE-2021-26858
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.53
Published
2021-03-03
CVE-2021-27065
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.943
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.233
Published
2021-03-03
Microsoft Exchange Server Remote Code Execution Vulnerability
CVSS Score
9.1
EPSS Score
0.187
Published
2021-03-03
Microsoft Exchange Server Spoofing Vulnerability
CVSS Score
6.5
EPSS Score
0.132
Published
2021-02-25
<p>A spoofing vulnerability exists in Microsoft Exchange Server which could result in an attack that would allow a malicious actor to impersonate the user.</p>
<p>This update addresses this vulnerability.</p>
<p>To prevent these types of attacks, Microsoft recommends customers to download inline images from different DNSdomains than the rest of OWA. Please see further instructions in the FAQ to put in place this mitigations.</p>
CVSS Score
5.4
EPSS Score
0.02
Published
2021-02-25