cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-49040,https://securityvulnerability.io/vulnerability/CVE-2024-49040,Microsoft Exchange Server Spoofing Vulnerability,"This vulnerability in Microsoft Exchange Server allows attackers to exploit the email system through spoofing techniques. By manipulating the perception of sender authenticity, unauthorized users can send malicious email communications that appear trustworthy. This compromises the integrity of email transactions and poses a threat to organizational security. Companies utilizing affected versions of Microsoft Exchange are urged to implement necessary patches and updates to safeguard against potential attacks.",Microsoft,"Microsoft Exchange Server 2019 Cumulative Update 13,Microsoft Exchange Server 2019 Cumulative Update 14,Microsoft Exchange Server 2016 Cumulative Update 23",7.5,HIGH,0.0007300000288523734,false,true,false,true,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-26198,https://securityvulnerability.io/vulnerability/CVE-2024-26198,Remote Code Execution Vulnerability Affects Microsoft Exchange Server,"The vulnerability in Microsoft Exchange Server allows attackers to execute arbitrary code with elevated privileges. This results from improper input validation, enabling unauthorized actions on the affected system. Attackers could exploit this flaw through specially crafted requests, posing significant risks to data integrity and security. Organizations using vulnerable versions of Exchange Server should prioritize applying the necessary security updates to mitigate potential exploits.",Microsoft,"Microsoft Exchange Server 2019 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 13,Microsoft Exchange Server 2016 Cumulative Update 23",8.8,HIGH,0.0020600000862032175,false,true,false,true,true,false,false,2024-03-12T16:57:53.504Z,0
CVE-2024-21410,https://securityvulnerability.io/vulnerability/CVE-2024-21410,Elevation of Privilege Vulnerability Affects Microsoft Exchange Server,"A vulnerability has been identified in Microsoft Exchange Server that allows an attacker with specific conditions to elevate their privileges. This could lead to unauthorized actions and access to sensitive data within the Exchange environment. Organizations using affected versions of Exchange Server, particularly those relying on email services, are advised to assess their security measures and implement necessary countermeasures to safeguard their systems and data. For additional information and remediation steps, refer to the vendor's advisory.",Microsoft,"Microsoft Exchange Server 2016 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 13,Microsoft Exchange Server 2019 Cumulative Update 14",9.8,CRITICAL,0.019169999286532402,true,true,false,true,true,true,false,2024-02-13T18:02:48.590Z,9879
CVE-2021-26857,https://securityvulnerability.io/vulnerability/CVE-2021-26857,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft,"Microsoft Exchange Server 2016 Cumulative Update 19,Microsoft Exchange Server 2019 Cumulative Update 8,Microsoft Exchange Server 2019,Microsoft Exchange Server 2013 Cumulative Update 22,Microsoft Exchange Server 2019 Cumulative Update 2,Microsoft Exchange Server 2016 Cumulative Update 13,Microsoft Exchange Server 2013 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 5,Microsoft Exchange Server 2019 Cumulative Update 6,Microsoft Exchange Server 2016 Cumulative Update 16,Microsoft Exchange Server 2016 Cumulative Update 17,Microsoft Exchange Server 2019 Cumulative Update 7,Microsoft Exchange Server 2016 Cumulative Update 18,Microsoft Exchange Server 2010 Service Pack 3,Microsoft Exchange Server 2013 Service Pack 1,Microsoft Exchange Server 2013 Cumulative Update 21,Microsoft Exchange Server 2016 Cumulative Update 12,Microsoft Exchange Server 2016 Cumulative Update 8,Microsoft Exchange Server 2019 Cumulative Update 1,Microsoft Exchange Server 2016 Cumulative Update 9,Microsoft Exchange Server 2016 Cumulative Update 10,Microsoft Exchange Server 2016 Cumulative Update 11",7.8,HIGH,0.6186800003051758,true,false,true,true,true,false,false,2021-03-03T00:15:00.000Z,0
CVE-2021-26855,https://securityvulnerability.io/vulnerability/CVE-2021-26855,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft,"Microsoft Exchange Server 2016 Cumulative Update 19,Microsoft Exchange Server 2019 Cumulative Update 8,Microsoft Exchange Server 2019,Microsoft Exchange Server 2013 Cumulative Update 22,Microsoft Exchange Server 2019 Cumulative Update 2,Microsoft Exchange Server 2016 Cumulative Update 13,Microsoft Exchange Server 2013 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 5,Microsoft Exchange Server 2019 Cumulative Update 6,Microsoft Exchange Server 2016 Cumulative Update 16,Microsoft Exchange Server 2016 Cumulative Update 17,Microsoft Exchange Server 2019 Cumulative Update 7,Microsoft Exchange Server 2016 Cumulative Update 18,Microsoft Exchange Server 2013 Cumulative Update 21,Microsoft Exchange Server 2016 Cumulative Update 12,Microsoft Exchange Server 2016 Cumulative Update 8,Microsoft Exchange Server 2019 Cumulative Update 1,Microsoft Exchange Server 2016 Cumulative Update 9,Microsoft Exchange Server 2016 Cumulative Update 10,Microsoft Exchange Server 2016 Cumulative Update 11",9.1,CRITICAL,0.9750800132751465,true,false,true,true,true,false,false,2021-03-03T00:15:00.000Z,0
CVE-2021-26858,https://securityvulnerability.io/vulnerability/CVE-2021-26858,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft,"Microsoft Exchange Server 2019,Microsoft Exchange Server 2013 Cumulative Update 22,Microsoft Exchange Server 2019 Cumulative Update 2,Microsoft Exchange Server 2016 Cumulative Update 13,Microsoft Exchange Server 2013 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 5,Microsoft Exchange Server 2019 Cumulative Update 6,Microsoft Exchange Server 2016 Cumulative Update 16,Microsoft Exchange Server 2016 Cumulative Update 17,Microsoft Exchange Server 2019 Cumulative Update 7,Microsoft Exchange Server 2016 Cumulative Update 18,Microsoft Exchange Server 2016 Cumulative Update 19,Microsoft Exchange Server 2019 Cumulative Update 8,Microsoft Exchange Server 2013 Cumulative Update 21,Microsoft Exchange Server 2016 Cumulative Update 12,Microsoft Exchange Server 2016 Cumulative Update 8,Microsoft Exchange Server 2019 Cumulative Update 1,Microsoft Exchange Server 2016 Cumulative Update 9,Microsoft Exchange Server 2016 Cumulative Update 10,Microsoft Exchange Server 2016 Cumulative Update 11",7.8,HIGH,0.15565000474452972,true,false,true,true,,false,false,2021-03-03T00:15:00.000Z,0
CVE-2021-27065,https://securityvulnerability.io/vulnerability/CVE-2021-27065,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft Exchange Server Remote Code Execution Vulnerability,Microsoft,"Microsoft Exchange Server 2019,Microsoft Exchange Server 2013 Cumulative Update 22,Microsoft Exchange Server 2019 Cumulative Update 2,Microsoft Exchange Server 2016 Cumulative Update 13,Microsoft Exchange Server 2013 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 5,Microsoft Exchange Server 2019 Cumulative Update 6,Microsoft Exchange Server 2016 Cumulative Update 16,Microsoft Exchange Server 2016 Cumulative Update 17,Microsoft Exchange Server 2019 Cumulative Update 7,Microsoft Exchange Server 2016 Cumulative Update 18,Microsoft Exchange Server 2016 Cumulative Update 19,Microsoft Exchange Server 2019 Cumulative Update 8,Microsoft Exchange Server 2013 Service Pack 1,Microsoft Exchange Server 2013 Cumulative Update 21,Microsoft Exchange Server 2016 Cumulative Update 12,Microsoft Exchange Server 2016 Cumulative Update 8,Microsoft Exchange Server 2019 Cumulative Update 1,Microsoft Exchange Server 2016 Cumulative Update 9,Microsoft Exchange Server 2016 Cumulative Update 10,Microsoft Exchange Server 2016 Cumulative Update 11",7.8,HIGH,0.9577500224113464,true,false,true,true,true,false,false,2021-03-03T00:15:00.000Z,0
CVE-2020-0903,https://securityvulnerability.io/vulnerability/CVE-2020-0903,,"A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'.",Microsoft,"Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14",5.4,MEDIUM,0.0006600000197067857,false,false,false,false,,false,false,2020-03-12T15:48:58.000Z,0
CVE-2020-0692,https://securityvulnerability.io/vulnerability/CVE-2020-0692,,"An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'.",Microsoft,"Microsoft Exchange Server 2013,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2016 Cumulative Update 15",8.1,HIGH,0.003980000037699938,false,false,false,false,,false,false,2020-02-11T21:23:00.000Z,0
CVE-2020-0688,https://securityvulnerability.io/vulnerability/CVE-2020-0688,,"A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.",Microsoft,"Microsoft Exchange Server 2013,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14,Microsoft Exchange Server 2016 Cumulative Update 15,Microsoft Exchange Server 2019 Cumulative Update 4,Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 30",8.8,HIGH,0.9702900052070618,true,false,true,true,true,false,false,2020-02-11T21:22:59.000Z,0
CVE-2019-1373,https://securityvulnerability.io/vulnerability/CVE-2019-1373,,"A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'.",Microsoft,"Microsoft Exchange Server 2019,Microsoft Exchange Server 2016,Microsoft Exchange Server 2013,Microsoft Exchange Server 2019 Cumulative Update 3,Microsoft Exchange Server 2016 Cumulative Update 14",9.8,CRITICAL,0.04311000183224678,false,false,false,false,,false,false,2019-11-12T18:52:50.000Z,0