Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Microsoft Subscribe
Filtered by product Exchange Server
Total 228 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-36756 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-21761 1 Microsoft 1 Exchange Server 2024-05-29 N/A 7.5 HIGH
Microsoft Exchange Server Information Disclosure Vulnerability
CVE-2023-38181 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.8 HIGH
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-36439 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-38182 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-36778 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-36050 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-38185 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.8 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-28310 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-36039 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-21529 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.8 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-32031 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.8 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-36035 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-35368 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.8 HIGH
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2023-35388 1 Microsoft 1 Exchange Server 2024-05-29 N/A 8.0 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2023-21709 1 Microsoft 1 Exchange Server 2024-05-29 N/A 9.8 CRITICAL
Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2020-16875 1 Microsoft 1 Exchange Server 2023-12-31 9.0 HIGH 8.4 HIGH
<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. Exploitation of the vulnerability requires an authenticated user in a certain Exchange role to be compromised.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Exchange handles cmdlet arguments.</p>
CVE-2020-16969 1 Microsoft 1 Exchange Server 2023-12-31 4.3 MEDIUM 7.1 HIGH
<p>An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. An attacker who successfully exploited the vulnerability could use this to gain further information from a user.</p> <p>To exploit the vulnerability, an attacker could include specially crafted OWA messages that could be loaded, without warning or filtering, from the attacker-controlled URL. This callback vector provides an information disclosure tactic used in web beacons and other types of tracking systems.</p> <p>The security update corrects the way that Exchange handles these token validations.</p>
CVE-2020-17083 1 Microsoft 1 Exchange Server 2023-12-31 3.5 LOW 5.5 MEDIUM
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2020-17084 1 Microsoft 1 Exchange Server 2023-12-31 9.0 HIGH 8.5 HIGH
Microsoft Exchange Server Remote Code Execution Vulnerability