CVE-2023-38181
published 2023-08-08CVE-2023-38181: Microsoft Exchange Server Spoofing Vulnerability Microsoft Exchange Server Spoofing Vulnerability
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
16.81%
96.7th percentile
Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server Spoofing Vulnerability
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_exchange_server_2016_cumulative_update_23 | >= 15.01.0 < 15.01.2507.032 | 15.01.2507.032 |
| microsoft | microsoft_exchange_server_2019_cumulative_update_12 | >= 15.02.0 < 15.02.1118.037 | 15.02.1118.037 |
| microsoft | microsoft_exchange_server_2019_cumulative_update_13 | >= 15.02.0 < 15.02.1258.025 | 15.02.1258.025 |
| msrc | microsoft_exchange_server_2016_cumulative_update_23 | — | — |
| msrc | microsoft_exchange_server_2019_cumulative_update_12 | — | — |
| msrc | microsoft_exchange_server_2019_cumulative_update_13 | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvelistv58.8HIGH
cisa8.8HIGH
vendor_msrc8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CVEList
Microsoft Exchange Server Spoofing Vulnerability
cvelistv5·2023-08-08·CVSS 8.8
CVE-2023-38181 [HIGH] CWE-502 Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server Spoofing Vulnerability
Microsoft
Microsoft Exchange Server Spoofing Vulnerability
vendor_msrc·2023-08-08·CVSS 8.8
CVE-2023-38181 [CRITICAL] CWE-502 Microsoft Exchange Server Spoofing Vulnerability
Microsoft Exchange Server Spoofing Vulnerability
FAQ: How could an attacker exploit this vulnerability?
An authenticated attacker could achieve exploitation by using a PowerShell remoting session to the server.
FAQ: According to the CVSS metric, the attack vector is network (AV:N) and the attack complexity is low (AC:L). What does that mean for this vulnerability?
The attack vector is set to Network because this vulnerability is remotely exploitable and can be exploited from the internet.
The attack complexity is set to Low because an attacker does not require significant prior knowledge of the cluster/system and can achieve repeatable success when attempting to exploit this vulnerability.
FAQ: Is there anything that I should be aware of if I'm running a non-English operating system and
CISA
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
cisa·2023-03-30·CVSS 8.8
CVE-2022-38181 [HIGH] CWE-416 Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Vulnerability: Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Affected: Arm Mali Graphics Processing Unit (GPU)
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.
Required Action: Apply updates per vendor instructions.
Notes: https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities; https://nvd.nist.gov/vuln/detail/CVE-2022-38181
Remediation Due Date: 2023-04-20
No detection rules found.
No public exploits indexed.
2023-08-08
Published