Lucene search
HistoryJul 14, 2021 - 6:15 p.m.
CVE-2021-34473
microsoft
exchange server
remote code execution
vulnerability
cve-2021-34473
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
9.6 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.973 High
EPSS
Percentile
99.9%
Microsoft Exchange Server Remote Code Execution Vulnerability
Affected configurations
Node
microsoftexchange_serverRange15.00.0–15.00.1497.015cumulative update 23
ORmicrosoftexchange_serverRange15.02.0–15.02.0858.010cumulative update 9
ORmicrosoftexchange_serverRange15.01.0–15.01.2242.008cumulative update 20
ORmicrosoftexchange_serverRange15.01.0–15.01.2176.012cumulative update 19
ORmicrosoftexchange_serverRange15.02.0–15.02.0792.013cumulative update 8
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | exchange_server | * | cpe:2.3:a:microsoft:exchange_server:*:cumulative update 23:*:*:*:*:*:* |
| microsoft | exchange_server | * | cpe:2.3:a:microsoft:exchange_server:*:cumulative update 9:*:*:*:*:*:* |
| microsoft | exchange_server | * | cpe:2.3:a:microsoft:exchange_server:*:cumulative update 20:*:*:*:*:*:* |
| microsoft | exchange_server | * | cpe:2.3:a:microsoft:exchange_server:*:cumulative update 19:*:*:*:*:*:* |
| microsoft | exchange_server | * | cpe:2.3:a:microsoft:exchange_server:*:cumulative update 8:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2013 Cumulative Update 23",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_23:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.00.0",
"lessThan": "15.00.1497.015",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 9",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "15.02.0858.010",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 20",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "15.01.2242.008",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 19",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "15.01.2176.012",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 8",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "15.02.0792.013",
"versionType": "custom",
"status": "affected"
}
]
}
]References
Social References
More
Related
zdi
zdi
nvd
nvd
CVE-2021-34473
2021-07-14 18:15:11
cisa_kev
cisa_kev
Microsoft Exchange Server Remote Code Execution Vulnerability
2021-11-03 00:00:00
hivepro
hivepro
MuddyWater is taking advantage of old vulnerabilities
2021-11-18 11:45:32
Hive Ransomware targets organizations with ProxyShell exploit
2022-04-22 14:34:47
BlackByte ransomware exploits Microsoft Servers ProxyShell Vulnerabilities
2021-12-07 13:24:49
prion
prion
Remote code execution
2021-07-14 18:15:00
githubexploit
githubexploit
Exploit for Server-Side Request Forgery in Microsoft
2021-08-11 12:20:07
Exploit for Server-Side Request Forgery in Microsoft
2021-08-16 11:27:13
Exploit for Server-Side Request Forgery in Microsoft
2022-11-16 08:22:29
mscve
mscve
Microsoft Exchange Server Remote Code Execution Vulnerability
2021-07-13 07:00:00
cvelist
cvelist
CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
2021-07-14 17:54:03
attackerkb
attackerkb
CVE-2021-34473
2021-07-14 00:00:00
ProxyShell Exploit Chain
2023-12-28 00:00:00
checkpoint_advisories
checkpoint_advisories
malwarebytes
malwarebytes
Patch now! Microsoft Exchange is being attacked via ProxyShell
2021-08-23 13:21:08
IIS extensions are on the rise as backdoors to servers
2022-07-27 13:58:06
packetstorm
packetstorm
Microsoft Exchange ProxyShell Remote Code Execution
2021-08-20 00:00:00
msrc
msrc
April 2021 Update Tuesday packages now available
2021-04-13 07:00:00
April 2021 Update Tuesday packages now available
2021-04-13 07:00:00
thn
thn
New Incident Report Reveals How Hive Ransomware Targets Organizations
2022-04-21 10:00:00
Hackers Exploiting ProxyLogon and ProxyShell Flaws in Spam Campaigns
2021-11-22 11:47:00
WARNING: Microsoft Exchange Under Attack With ProxyShell Flaws
2021-08-22 09:51:00
threatpost
threatpost
IKEA Hit by Email Reply-Chain Cyberattack
2021-11-29 21:22:12
Attackers Hijack Email Using Proxy Logon/Proxyshell Flaws
2021-11-22 19:26:25
Microsoft Breaks Silence on Barrage of ProxyShell Attacks
2021-08-26 12:39:54
rapid7blog
rapid7blog
For Microsoft Exchange Server Vulnerabilities, Patching Remains Patchy
2021-10-06 14:07:12
Metasploit Wrap-Up
2021-08-20 19:12:00
ProxyShell: More Widespread Exploitation of Microsoft Exchange Servers
2021-08-12 21:08:43
trellix
trellix
Trellix Global Defenders: Analysis and Protections for BlackByte Ransomware
2022-02-28 00:00:00
Trellix Global Defenders: Analysis and Protections for BlackByte Ransomware
2022-02-28 00:00:00
metasploit
metasploit
Microsoft Exchange ProxyShell RCE
2021-08-18 14:50:34
zdt
zdt
Microsoft Exchange ProxyShell Remote Code Execution Exploit
2021-08-21 00:00:00
impervablog
impervablog
Microsoft Exchange Server Vulnerabilities CVE-2022-41040 and CVE-2022-41082
2022-09-30 16:47:34
fireeye
fireeye
PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers
2021-09-03 10:00:00
cisa
cisa
Urgent: Protect Against Active Exploitation of ProxyShell Vulnerabilities
2021-08-21 00:00:00
pentestpartners
pentestpartners
Hive Ransomware is on the rise. How should you deal with it?
2022-11-18 06:44:42
ics
ics
nuclei
nuclei
Exchange Server - Remote Code Execution
2021-08-10 07:59:06
qualysblog
qualysblog
AvosLocker Ransomware Behavior Examined on Windows & Linux
2022-03-07 05:18:46
Qualys Tackles 2022’s Top Routinely Exploited Cyber Vulnerabilities
2023-08-24 19:07:05
CISA Alert: Top 15 Routinely Exploited Vulnerabilities
2022-05-06 12:19:24
securelist
securelist
CVE-2022-41040 and CVE-2022-41082 – zero-days in MS Exchange
2022-12-19 16:15:49
From Caribbean shores to your devices: analyzing Cuba ransomware
2023-09-11 10:00:26
IT threat evolution in Q3 2021. PC statistics
2021-11-26 12:00:36
mmpc
mmpc
kaspersky
kaspersky
KLA12224 Multiple vulnerabilities in Microsoft Exchange Server
2021-07-13 00:00:00
mskb
mskb
nessus
nessus
Security Updates for Microsoft Exchange Server (April 2021)
2021-04-13 00:00:00
krebs
krebs
Microsoft Patch Tuesday, July 2021 Edition
2021-07-13 21:41:47
mssecure
mssecure
avleonov
avleonov
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
9.6 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.973 High
EPSS
Percentile
99.9%
Related for CVE-2021-34473