Multiple vulnerabilities in Microsoft Server Software

Описание

Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

1. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.
2. An information disclosure vulnerability in Microsoft Exchange Server can be exploited remotely to obtain sensitive information.
3. An elevation of privilege vulnerability in Microsoft Exchange Server Hybrid Deployment can be exploited remotely to gain privileges.
4. A tampering vulnerability in Microsoft Exchange Server can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2025-25006
  CVE-2025-33051
  CVE-2025-53786
  CVE-2025-25007
  CVE-2025-25005
  

Связанные продукты

• Microsoft-Exchange-Server

Список CVE

• CVE-2025-53786
  critical
• CVE-2025-25006
  high
• CVE-2025-33051
  critical
• CVE-2025-25007
  high
• CVE-2025-25005
  high

Список KB

• 5050674
• 5050672
• 5050673
• 5047155
• 5063223
• 5063224
• 5063222
• 5063221

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com