1. Home
  2. Products
  3. Microsoft
  4. Microsoft Exchange Server

Microsoft Exchange Server

Dashboard Versions References Vulnerabilities

CVEs Published

Based on CVE published date

Common Weaknesses

Weakness Trend

Based on https://cwe.mitre.org/documents/vuln-trends/index.html

CVSS Severity

CVSS Severity - By Year

CVSS Base Score

CVSS Base Metrics

Access Vector (AV)

The access vector (AV) shows how a vulnerability may be exploited.

Access Complexity (AC)

The access complexity (AC) metric describes how easy or difficult it is to exploit the discovered vulnerability.

Authentication (Au)

The authentication (Au) metric describes the number of times that an attacker must authenticate to a target to exploit it. It does not include (for example) authentication to a network in order to gain access. For locally exploitable vulnerabilities, this value should only be set to Single or Multiple if further authentication is required after initial access.

Attack Vector (AV)

This metric reflects the context by which vulnerability exploitation is possible.

Attack Complexity (AC)

This metric depicts the situations that are not under the attackers control and are required to exploit vulnerability.

Privileges Required (PR)

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

User Interaction (UI)

This metric captures the requirement for a user, other than the attacker, to participate in the successful compromise the vulnerable component.

Scope (S)

This metric is a determination on whether a vulnerability in one system or component can have carry over impact on another system or component.

CVSS Impact Metrics

Confidentiality (C)

The confidentiality (C) metric describes the impact on the confidentiality of data processed by the system.

Integrity (I)

The Integrity (I) metric describes the impact on the integrity of the exploited system.

Availability (A)

The availability (A) metric describes the impact on the availability of the target system. Attacks that consume network bandwidth, processor cycles, memory or any other resources affect the availability of a system.

Confidentiality (C)

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. Confidentiality refers to limiting information access and disclosure to only authorized users, as well as preventing access by, or disclosure to, unauthorized ones.

Integrity (I)

This metric measures the impact to integrity of a successfully exploited vulnerability. Integrity refers to the trustworthiness and veracity of information.

Availability (A)

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. It refers to the loss of availability of the impacted component itself, such as a networked service (e.g., web, database, email). Since availability refers to the accessibility of information resources, attacks that consume network bandwidth, processor cycles, or disk space all impact the availability of an impacted component.

Title CPE22 CPE23 Type Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other
Title CPE22 CPE23 Type Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other
URL Type
http://technet.microsoft.com/en-us/security/bulletin/ms13-105
http://technet.microsoft.com/security/bulletin/MS16-108 Advisory
https://docs.microsoft.com/en-us/exchange/exchange-server-2013-exchange-2013-help Product
https://docs.microsoft.com/en-us/Exchange/new-features/build-numbers-and-release-dates?redirectedfrom=MSDN&view=exchserver-2019 Version
https://docs.microsoft.com/en-us/exchange/new-features/build-numbers-and-release-dates?view=exchserver-2019 Change Log
https://docs.microsoft.com/en-us/exchange/new-features/build-numbers-and-release-dates?view=exchserver-2019#exchange-server-2010 Product
https://docs.microsoft.com/en-us/exchange/new-features/build-numbers-and-release-dates?view=exchserver-2019&viewFallbackFrom=exchserver-2013 Version
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-024 Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-106 Advisory
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2015/ms15-064 Advisory
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2016/ms16-079 Advisory
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-31196 Advisory
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-21978 Advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28310 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0110 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11761 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11932 Advisory
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8559 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8159 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0688 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16875 Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16969 Advisory
https://products.office.com/en-us/exchange/email Vendor
https://products.office.com/en-us/exchange/microsoft-exchange-server Product
https://products.office.com/en-us/exchange/microsoft-exchange-server-2016 Product
https://support.microsoft.com/en-us/help/4488406/cumulative-update-13-for-exchange-server-2016 Product
https://support.microsoft.com/en-us/help/4489622/cumulative-update-23-for-exchange-server-2013 Product
https://support.microsoft.com/en-us/help/4593467/description-of-the-security-update-for-microsoft-exchange-server-2010 Product
https://support.microsoft.com/en-us/topic/cumulative-update-14-for-exchange-server-2019-kb5035606-5d08ad6d-3527-41c9-82b6-e19d3ddf94db Version
https://support.microsoft.com/en-us/topic/cumulative-update-8-for-exchange-server-2019-fb128187-430a-b219-ea87-92899954998d Version
https://support.microsoft.com/en-us/topic/cumulative-update-9-for-exchange-server-2019-c8ee8bf0-2f1b-3183-6600-33fb005bc281 Change Log
https://technet.microsoft.com/library/security/ms15-026
https://www.microsoft.com/en-us/ Vendor
https://www.microsoft.com/en-us/download/details.aspx?id=100910 Version
https://www.microsoft.com/en-us/download/details.aspx?id=102532 Version
https://www.microsoft.com/en-us/download/details.aspx?id=102896 Product
https://www.microsoft.com/en-us/download/details.aspx?id=46373
https://www.microsoft.com/en-us/download/details.aspx?id=49161 Product
https://www.microsoft.com/en-us/download/details.aspx?id=53835 Product
https://www.microsoft.com/en-us/download/details.aspx?id=55519 Version
https://www.microsoft.com/en-us/download/details.aspx?id=55520 Version
https://www.microsoft.com/en-us/download/details.aspx?id=56659 Version
https://www.microsoft.com/en-us/download/details.aspx?id=56660 Version
https://www.microsoft.com/en-us/download/details.aspx?id=56662 Version
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date