Lucene search
MicrosoftCVELIST:CVE-2021-31209HistoryMay 11, 2021 - 7:11 p.m.
CVE-2021-31209 Microsoft Exchange Server Spoofing Vulnerability
2021-05-1119:11:43
microsoft
www.cve.org
7
microsoft
exchange server
spoofing
vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N/E:U/RL:O/RC:C
AI Score
6.9
Confidence
High
EPSS
0.027
Percentile
90.7%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 9",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "15.02.0858.012",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 20",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "15.01.2242.010",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2013 Cumulative Update 23",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_23:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.00.0",
"lessThan": "15.00.1497.018",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2016 Cumulative Update 19",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.01.0",
"lessThan": "15.01.2176.014",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Exchange Server 2019 Cumulative Update 8",
"cpes": [
"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "15.02.0",
"lessThan": "15.02.0792.015",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
zdi
zdi
nvd
nvd
CVE-2021-31209
2021-05-11 19:15:10
mscve
mscve
Microsoft Exchange Server Spoofing Vulnerability
2021-05-11 07:00:00
prion
prion
Spoofing
2021-05-11 19:15:00
cve
cve
CVE-2021-31209
2021-05-11 19:15:10
nessus
nessus
Security Updates for Exchange (May 2021)
2021-05-11 00:00:00
mskb
mskb
kaspersky
kaspersky
KLA12169 Multiple vulnerabilities in Microsoft Exchange Server
2021-05-11 00:00:00
thn
thn
Latest Microsoft Windows Updates Patch Dozens of Security Flaws
2021-05-12 09:15:00
threatpost
threatpost
Wormable Windows Bug Opens Door to DoS, RCE
2021-05-11 20:05:44
rapid7blog
rapid7blog
Patch Tuesday - May 2021
2021-05-11 23:44:00
qualysblog
qualysblog
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N/E:U/RL:O/RC:C
AI Score
6.9
Confidence
High
EPSS
0.027
Percentile
90.7%
Related for CVELIST:CVE-2021-31209