Multiple vulnerabilities in Microsoft Server Software

Description

Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges.

Below is a complete list of vulnerabilities:

1. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
2. An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely to gain privileges.

Original advisories

• CVE-2022-41078

• CVE-2022-41079
• CVE-2022-41080
• CVE-2022-41123

Exploitation

Public exploits exist for this vulnerability.

Related products

• Microsoft-Exchange-Server

CVE list

• CVE-2022-41078
  critical
• CVE-2022-41079
  critical
• CVE-2022-41080
  critical
• CVE-2022-41123
  critical

KB list

• 5019758

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com