CVE-2018-8152: An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange…

medium5.4CVSS 3.0

AVNACLPRNUIRSUCLILAN

An elevation of privilege vulnerability exists when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server.

Affected

25 ranges

Vendor	Product	Version range	Fixed in
microsoft	exchange_server	—	—
microsoft	microsoft_exchange_server	—	—
microsoft	microsoft_exchange_server	—	—
msrc	microsoft_exchange_server_2010_service_pack_3	—	—
msrc	microsoft_exchange_server_2013_cumulative_update_21	—	—
msrc	microsoft_exchange_server_2013_cumulative_update_22	—	—
msrc	microsoft_exchange_server_2013_cumulative_update_23	—	—
msrc	microsoft_exchange_server_2013_service_pack_1	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_10	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_11	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_12	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_13	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_14	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_15	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_16	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_17	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_18	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_19	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_8	—	—
msrc	microsoft_exchange_server_2016_cumulative_update_9	—	—
msrc	microsoft_exchange_server_2019	—	—
msrc	microsoft_exchange_server_2019_cumulative_update_1	—	—
msrc	microsoft_exchange_server_2019_cumulative_update_2	—	—
msrc	microsoft_exchange_server_2019_cumulative_update_3	—	—
msrc	microsoft_exchange_server_2019_cumulative_update_4	—	—