Vulnerability in Microsoft Exchange Server
CVE-2018-8153
A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Spoofing Vulnerability." This affects Microsoft Exchange Server.
EPSS: 0.015 (81.3th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Exchange Server — versions 2016 Cumulative Update 8, 2016 Cumulative Update 9
References
- 104045 (vdb-entry, x_refsource_BID)
- 1040850 (vdb-entry, x_refsource_SECTRACK)
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8153 (x_refsource_CONFIRM)