Multiple vulnerabilities in Microsoft Exchange Server

Описание

Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft Exchange Server can be exploited remotely to execute arbitrary code.
2. An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely to gain privileges.
3. An information disclosure vulnerability in Microsoft Exchange can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

• CVE-2021-31196
  CVE-2021-34470
  CVE-2021-31206
  CVE-2021-34473
  CVE-2021-34523
  CVE-2021-33766
  CVE-2021-33768
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2021-31196
  high
• CVE-2021-34470
  high
• CVE-2021-31206
  critical
• CVE-2021-34473
  critical
• CVE-2021-34523
  critical
• CVE-2021-33766
  warning
• CVE-2021-33768
  high

Список KB

• 5001779
• 5004780
• 5004778
• 5004779
• 5003611
• 5003612

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com