⚠ Actively exploited
Added to CISA KEV on 2024-08-21. Federal agencies required to patch by 2024-09-11. Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable..

CVE-2021-31196

7 documents7 sources
Severity
7.2HIGH
EPSS
3.3%
top 12.69%
CISA KEV
KEV
Added 2024-08-21
Due 2024-09-11
Exploit
Exploited in wild
Active exploitation observed
Affected products
6
Microsoft Microsoft Exchange Server 2013 Cumulative Update 23Microsoft Microsoft Exchange Server 2016 Cumulative Update 20Microsoft Microsoft Exchange Server 2016 Cumulative Update 21+3 more
Timeline
PublishedJul 14
KEV addedAug 21
KEV dueSep 11
CISA Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Description

Microsoft Exchange Server Remote Code Execution Vulnerability

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages6 packages

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

3
GHSA
GHSA-5jv9-cff9-2j3m: Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31206, CVE-2021-344732022-05-24
CVEList
Microsoft Exchange Server Remote Code Execution Vulnerability2021-07-14
VulnCheck
Microsoft Exchange Server Information Disclosure Vulnerability2021

💥Exploits & PoCs

1
Nuclei
Exchange Server - Remote Code Execution

📋Vendor Advisories

2
CISA
Microsoft Exchange Server Information Disclosure Vulnerability2024-08-21
Microsoft
Microsoft Exchange Server Remote Code Execution Vulnerability2021-07-13