CVE-2021-42305Microsoft Exchange Server 2013 Cumulative Update 23 vulnerability

4 documents4 sources
Severity
6.5MEDIUMCNA
No vector
EPSS
24.3%
top 3.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Microsoft Exchange Server 2013 Cumulative Update 23Microsoft Exchange Server 2016 Cumulative Update 21Microsoft Exchange Server 2016 Cumulative Update 22+2 more
Timeline
PublishedNov 10
Latest updateMay 24

Description

Microsoft Exchange Server Spoofing Vulnerability Microsoft Exchange Server Spoofing Vulnerability

Affected Packages5 packages

🔴Vulnerability Details

2
GHSA
GHSA-ch43-44fr-3cm6: Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-413492022-05-24
CVEList
Microsoft Exchange Server Spoofing Vulnerability2021-11-10

💥Exploits & PoCs

1
Nuclei
Microsoft Exchange Server Pre-Auth POST Based Cross-Site Scripting

📋Vendor Advisories

1
Microsoft
Microsoft Exchange Server Spoofing Vulnerability2021-11-09
CVE-2021-42305 — Microsoft vulnerability | cvebase