Multiple vulnerabilities in Microsoft Exchange Server

Описание

Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Microsoft Exchange Server can be exploited remotely to gain privileges.
2. A remote code execution vulnerability in Microsoft Exchange Server can be exploited remotely to execute arbitrary code.
3. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
4. A remote code execution vulnerability in Microsoft Exchange can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• CVE-2023-21709
  CVE-2023-35388
  CVE-2023-38181
  CVE-2023-38185
  CVE-2023-38182
  CVE-2023-35368
  

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2023-21709
  critical
• CVE-2023-35388
  critical
• CVE-2023-38181
  critical
• CVE-2023-38185
  critical
• CVE-2023-38182
  critical
• CVE-2023-35368
  critical

Список KB

• 5030524

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com