VDB
GCVE-110-NCSC-2025-243
GCVE-110-NCSC-2025-243
Advisory PublishedCVSS 8.0/10
De kwetsbaarheid stelt een gebruiker met administratieve rechten op een on-premise Microsoft Exchange server in staat om de rechten te verhogen naar de cloud.
Weaknesses (CWE)
CWE-287Improper Authentication
Risk Scores
CVSS 3.1
8.0/10
High · CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Microsoft | vers:unknown/15.02.0|<15.02.1748.024 | — | — |
| Microsoft | vers:microsoft/unknown | — | — |
| Microsoft | vers:unknown/15.02.0.0|<15.02.2562.017 | — | — |
| Microsoft | vers:unknown/15.01.0|<15.01.2507.055 | — | — |
| Microsoft | vers:unknown/15.02.0.0|<15.02.1544.025 | — | — |
Aliases
Browse GCVE Records
73,280 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.