VDB
CVE-2023-36756
CVE-2023-36756
PUBLISHED
Es existieren mehrere Schwachstellen in Microsoft Exchange Server. Die Fehler sind noch nicht im Detail beschrieben. Ein Angreifer aus dem angrenzenden Netzwerk kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen und Informationen falsch darzustellen.
EPSS 0.40% · 61.2th percentile
Risk Scores
EPSS Score
0.40%
61.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Exchange Server 2019 Cumulative Update 13 | |
| Microsoft | Microsoft Exchange Server 2019 Cumulative Update 12 | |
| Microsoft | Microsoft Exchange Server 2016 Cumulative Update 23 |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
- Invoke-AnalyzerSecurityCveCheck.ps1 (github-poc)
Timeline
- Sep 12, 2023 CVE Published
- Sep 13, 2023 EPSS Score
- Oct 15, 2023 EPSS Score
- Dec 19, 2023 EPSS Score
- Jan 21, 2024 EPSS Score
- Feb 22, 2024 EPSS Score
- Apr 27, 2024 EPSS Score
- May 29, 2024 EPSS Score
- Jul 1, 2024 EPSS Score
- Aug 2, 2024 EPSS Score
- Oct 6, 2024 EPSS Score
- Nov 7, 2024 EPSS Score