CVE-2021-24085

3 documents3 sources

Severity

6.5MEDIUM

No vector

EPSS

13.2%

top 5.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

4

Microsoft Microsoft Exchange Server 2016 Cumulative Update 18 Microsoft Microsoft Exchange Server 2016 Cumulative Update 19 Microsoft Microsoft Exchange Server 2019 Cumulative Update 7 +1 more

Timeline

PublishedFeb 25

Latest updateMay 24

Description

Microsoft Exchange Server Spoofing Vulnerability Microsoft Exchange Server Spoofing Vulnerability

Affected Packages4 packages

▶CVEListV5microsoft/microsoft_exchange_server_2019_cumulative_update_715.02.0 — publication

▶CVEListV5microsoft/microsoft_exchange_server_2019_cumulative_update_815.02.0 — publication

▶CVEListV5microsoft/microsoft_exchange_server_2016_cumulative_update_1815.01.0 — publication

▶CVEListV5microsoft/microsoft_exchange_server_2016_cumulative_update_1915.01.0 — publication

🔴Vulnerability Details

2

GHSA

GHSA-2rhv-qrh4-ppvg: Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-1730↗2022-05-24

▶

CVEList

Microsoft Exchange Server Spoofing Vulnerability↗2021-02-25

▶

📋Vendor Advisories

1

Microsoft

Microsoft Exchange Server Spoofing Vulnerability↗2021-02-09

▶

CVE-2021-24085 (MEDIUM CVSS 6.5) | Microsoft Exchange Server Spoofing | cvebase.io