Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-64666 (GCVE-0-2025-64666)
Vulnerability from cvelistv5 – Published: 2025-12-09 17:55 – Updated: 2026-04-16 14:18
VLAI?
EPSS
Title
Microsoft Exchange Server Elevation of Privilege Vulnerability
Summary
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.
Severity ?
CWE
- CWE-20 - Improper Input Validation
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Microsoft | Microsoft Exchange Server 2016 Cumulative Update 23 |
Affected:
15.01.0.0 , < 15.01.2507.063
(custom)
|
|||||||||||||||||
|
|||||||||||||||||||
Date Public ?
2025-12-09 08:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-64666",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-10T04:56:36.547270Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-26T16:56:48.947Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft Exchange Server 2016 Cumulative Update 23",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "15.01.2507.063",
"status": "affected",
"version": "15.01.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft Exchange Server 2019 Cumulative Update 14",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "15.02.1544.037",
"status": "affected",
"version": "15.02.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft Exchange Server 2019 Cumulative Update 15",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "15.02.1748.042",
"status": "affected",
"version": "15.02.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft Exchange Server Subscription Edition RTM",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "15.02.2562.035",
"status": "affected",
"version": "15.02.0.0",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_15:*:*:*:*:*:*",
"versionEndExcluding": "15.02.1748.042",
"versionStartIncluding": "15.02.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server_2016:*:cumulative_update_23:*:*:*:*:*:*",
"versionEndExcluding": "15.01.2507.063",
"versionStartIncluding": "15.01.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server_se:*:RTM:*:*:*:*:*:*",
"versionEndExcluding": "15.02.2562.035",
"versionStartIncluding": "15.02.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_14:*:*:*:*:*:*",
"versionEndExcluding": "15.02.1544.037",
"versionStartIncluding": "15.02.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2025-12-09T08:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20: Improper Input Validation",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-16T14:18:39.837Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Exchange Server Elevation of Privilege Vulnerability",
"tags": [
"vendor-advisory",
"patch"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
}
],
"title": "Microsoft Exchange Server Elevation of Privilege Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2025-64666",
"datePublished": "2025-12-09T17:55:45.263Z",
"dateReserved": "2025-11-06T23:40:37.276Z",
"dateUpdated": "2026-04-16T14:18:39.837Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-64666",
"date": "2026-05-11",
"epss": "0.00041",
"percentile": "0.1246"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-64666\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2025-12-09T18:16:05.910\",\"lastModified\":\"2026-01-02T21:15:10.337\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:*:*:*:*:subscription:*:*:*\",\"versionEndExcluding\":\"15.02.2562.035\",\"matchCriteriaId\":\"AD6F2ED1-498D-489C-8F5A-4EBDF3AB854D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"8039FBA1-73D4-4FF2-B183-0DCC961CBFF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"56728785-188C-470A-9692-E6C7235109CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"63E362CB-CF75-4B7E-A4B1-D6D84AFCBB68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BE04790-85A2-4078-88CE-1787BC5172E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCF101BE-27FD-4E2D-A694-C606BD3D1ED7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DF5BDB5-205D-4B64-A49A-0152AFCF4A13\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_14:*:*:*:*:*:*\",\"matchCriteriaId\":\"55284CF7-0D04-4216-83FE-4B1F9CA94207\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_15:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA2CE223-AA49-49E6-AC32-59270EFF55AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_16:*:*:*:*:*:*\",\"matchCriteriaId\":\"4830D6A9-AF74-480C-8F69-8648CD619980\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_17:*:*:*:*:*:*\",\"matchCriteriaId\":\"079E1E3F-FF25-4B0D-AC98-191D6455A014\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_18:*:*:*:*:*:*\",\"matchCriteriaId\":\"29805EC7-6403-44B9-91EC-109C087E98EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*\",\"matchCriteriaId\":\"28FCA0E8-7D27-4746-9731-91B834CA3E64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"996163E7-6F3F-4D3B-AEA4-62A7F7E1F54D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:*\",\"matchCriteriaId\":\"19C1EE0C-B8DD-4B91-BE4B-1C42D72FB718\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_21:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BE427A4-B0C2-4064-8234-29426325C348\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_22:*:*:*:*:*:*\",\"matchCriteriaId\":\"449CE85B-E599-44D3-A7C1-5133F6A55E86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE401B0A-DDE4-4A36-8E27-6DB14E094BE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"450319C4-7C8F-43B7-B7F8-80DA4F1F2817\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"23015889-48AF-40A5-862F-290E73A54E77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FC34516-D7E7-4AD9-9B45-5474831548E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"5211792E-5292-41C0-B7E9-8AA63EC606EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_8:*:*:*:*:*:*\",\"matchCriteriaId\":\"075E907F-AF2F-4C31-86C7-51972BE412A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"69AF19DC-3D65-49A8-A85F-511085CDF27B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"40D8A6DB-9225-4A3F-AD76-192F6CCCF002\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"051DE6C4-7456-4C42-BC51-253208AADB4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4185347-EEDD-4239-9AB3-410E2EC89D2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_11:*:*:*:*:*:*\",\"matchCriteriaId\":\"435343A4-BF10-461A-ABF2-D511A5FBDA75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_12:*:*:*:*:*:*\",\"matchCriteriaId\":\"B23C8E3E-5243-4DA6-B9AA-F6053084B55E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_13:*:*:*:*:*:*\",\"matchCriteriaId\":\"583745C7-B802-4CBE-BD88-B5B9AF9B5371\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE320413-D2C9-4B28-89BF-361B44A3F0FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"104F96DC-E280-4E0A-8586-B043B55888C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"73B3B3FE-7E85-4B86-A983-2C410FFEF4B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A9FB275-7F17-48B2-B528-BE89309D2AF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4AB3C25-CEA8-4D66-AEE4-953C8B17911A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"36CE5C6D-9A04-41F5-AE7C-265779833649\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*\",\"matchCriteriaId\":\"44ECF39A-1DE1-4870-A494-06A53494338D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"71CDF29B-116B-4DE2-AFD0-B62477FF0AEB\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-64666\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-10T04:56:36.547270Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-09T20:16:14.522Z\"}}], \"cna\": {\"title\": \"Microsoft Exchange Server Elevation of Privilege Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Microsoft Exchange Server 2016 Cumulative Update 23\", \"versions\": [{\"status\": \"affected\", \"version\": \"15.01.0.0\", \"lessThan\": \"15.01.2507.063\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Exchange Server 2019 Cumulative Update 14\", \"versions\": [{\"status\": \"affected\", \"version\": \"15.02.0.0\", \"lessThan\": \"15.02.1544.037\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Exchange Server 2019 Cumulative Update 15\", \"versions\": [{\"status\": \"affected\", \"version\": \"15.02.0.0\", \"lessThan\": \"15.02.1748.042\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft Exchange Server Subscription Edition RTM\", \"versions\": [{\"status\": \"affected\", \"version\": \"15.02.0.0\", \"lessThan\": \"15.02.2562.035\", \"versionType\": \"custom\"}], \"platforms\": [\"x64-based Systems\"]}], \"datePublic\": \"2025-12-09T08:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666\", \"name\": \"Microsoft Exchange Server Elevation of Privilege Vulnerability\", \"tags\": [\"vendor-advisory\", \"patch\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \"Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20: Improper Input Validation\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_15:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"15.02.1748.042\", \"versionStartIncluding\": \"15.02.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:exchange_server_2016:*:cumulative_update_23:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"15.01.2507.063\", \"versionStartIncluding\": \"15.01.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:exchange_server_se:*:RTM:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"15.02.2562.035\", \"versionStartIncluding\": \"15.02.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_14:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"15.02.1544.037\", \"versionStartIncluding\": \"15.02.0.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2026-04-16T14:18:39.837Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-64666\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-16T14:18:39.837Z\", \"dateReserved\": \"2025-11-06T23:40:37.276Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2025-12-09T17:55:45.263Z\", \"assignerShortName\": \"microsoft\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2025-AVI-1094
Vulnerability from certfr_avis - Published: 2025-12-10 - Updated: 2025-12-10
De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un contournement de la politique de sécurité.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | Microsoft Exchange Server 2019 Cumulative Update 15 versions antérieures à 15.02.1748.042 | ||
| Microsoft | N/A | Greffon GitHub Copilot pour JetBrains IDEs versions antérieures à 1.5.60-243 | ||
| Microsoft | N/A | Microsoft Exchange Server 2016 Cumulative Update 23 versions antérieures à 15.01.2507.063 | ||
| Microsoft | N/A | Microsoft SharePoint Server Subscription Edition versions antérieures à 16.0.19127.20378 | ||
| Microsoft | N/A | Microsoft SharePoint Enterprise Server 2016 versions antérieures à 16.0.5530.1000 | ||
| Microsoft | N/A | Microsoft Exchange Server 2019 Cumulative Update 14 versions antérieures à 15.02.1544.037 | ||
| Microsoft | N/A | Microsoft Exchange Server Subscription Edition RTM versions antérieures à 15.02.2562.035 | ||
| Microsoft | N/A | Microsoft SharePoint Server 2019 versions antérieures à 16.0.10417.20075 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Exchange Server 2019 Cumulative Update 15 versions ant\u00e9rieures \u00e0 15.02.1748.042",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Greffon GitHub Copilot pour JetBrains IDEs versions ant\u00e9rieures \u00e0 1.5.60-243",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server 2016 Cumulative Update 23 versions ant\u00e9rieures \u00e0 15.01.2507.063",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.19127.20378",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5530.1000",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server 2019 Cumulative Update 14 versions ant\u00e9rieures \u00e0 15.02.1544.037",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server Subscription Edition RTM versions ant\u00e9rieures \u00e0 15.02.2562.035",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10417.20075",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-62562",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62562"
},
{
"name": "CVE-2025-64667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64667"
},
{
"name": "CVE-2025-62555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62555"
},
{
"name": "CVE-2025-64672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64672"
},
{
"name": "CVE-2025-62558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62558"
},
{
"name": "CVE-2025-64671",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64671"
},
{
"name": "CVE-2025-62559",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62559"
},
{
"name": "CVE-2025-64666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64666"
}
],
"initial_release_date": "2025-12-10T00:00:00",
"last_revision_date": "2025-12-10T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1094",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un contournement de la politique de s\u00e9curit\u00e9.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
"vendor_advisories": [
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64667",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64667"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62559",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62559"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64671",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64671"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62558",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62558"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62562",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62562"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64666",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62555",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62555"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64672",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64672"
}
]
}
CERTFR-2025-AVI-1094
Vulnerability from certfr_avis - Published: 2025-12-10 - Updated: 2025-12-10
De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un contournement de la politique de sécurité.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | Microsoft Exchange Server 2019 Cumulative Update 15 versions antérieures à 15.02.1748.042 | ||
| Microsoft | N/A | Greffon GitHub Copilot pour JetBrains IDEs versions antérieures à 1.5.60-243 | ||
| Microsoft | N/A | Microsoft Exchange Server 2016 Cumulative Update 23 versions antérieures à 15.01.2507.063 | ||
| Microsoft | N/A | Microsoft SharePoint Server Subscription Edition versions antérieures à 16.0.19127.20378 | ||
| Microsoft | N/A | Microsoft SharePoint Enterprise Server 2016 versions antérieures à 16.0.5530.1000 | ||
| Microsoft | N/A | Microsoft Exchange Server 2019 Cumulative Update 14 versions antérieures à 15.02.1544.037 | ||
| Microsoft | N/A | Microsoft Exchange Server Subscription Edition RTM versions antérieures à 15.02.2562.035 | ||
| Microsoft | N/A | Microsoft SharePoint Server 2019 versions antérieures à 16.0.10417.20075 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Exchange Server 2019 Cumulative Update 15 versions ant\u00e9rieures \u00e0 15.02.1748.042",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Greffon GitHub Copilot pour JetBrains IDEs versions ant\u00e9rieures \u00e0 1.5.60-243",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server 2016 Cumulative Update 23 versions ant\u00e9rieures \u00e0 15.01.2507.063",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.19127.20378",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5530.1000",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server 2019 Cumulative Update 14 versions ant\u00e9rieures \u00e0 15.02.1544.037",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Exchange Server Subscription Edition RTM versions ant\u00e9rieures \u00e0 15.02.2562.035",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10417.20075",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-62562",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62562"
},
{
"name": "CVE-2025-64667",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64667"
},
{
"name": "CVE-2025-62555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62555"
},
{
"name": "CVE-2025-64672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64672"
},
{
"name": "CVE-2025-62558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62558"
},
{
"name": "CVE-2025-64671",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64671"
},
{
"name": "CVE-2025-62559",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62559"
},
{
"name": "CVE-2025-64666",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64666"
}
],
"initial_release_date": "2025-12-10T00:00:00",
"last_revision_date": "2025-12-10T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1094",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-12-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un contournement de la politique de s\u00e9curit\u00e9.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
"vendor_advisories": [
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64667",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64667"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62559",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62559"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64671",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64671"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62558",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62558"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62562",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62562"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64666",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-62555",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-62555"
},
{
"published_at": "2025-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-64672",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64672"
}
]
}
CNVD-2025-30572
Vulnerability from cnvd - Published: 2025-12-12
VLAI Severity ?
Title
Microsoft Exchange Server输入验证错误漏洞(CNVD-2025-3057284)
Description
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序。它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。
Microsoft Exchange Server存在安全漏洞。攻击者可利用该漏洞提升权限。
Severity
高
Patch Name
Microsoft Exchange Server输入验证错误漏洞(CNVD-2025-3057284)的补丁
Patch Description
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序。它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。
Microsoft Exchange Server存在安全漏洞。攻击者可利用该漏洞提升权限。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666
Reference
https://nvd.nist.gov/vuln/detail/CVE-2025-64666
Impacted products
| Name | Microsoft Exchange Server |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2025-64666",
"cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-64666"
}
},
"description": "Microsoft Exchange Server\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4e00\u5957\u7535\u5b50\u90ae\u4ef6\u670d\u52a1\u7a0b\u5e8f\u3002\u5b83\u63d0\u4f9b\u90ae\u4ef6\u5b58\u53d6\u3001\u50a8\u5b58\u3001\u8f6c\u53d1\uff0c\u8bed\u97f3\u90ae\u4ef6\uff0c\u90ae\u4ef6\u8fc7\u6ee4\u7b5b\u9009\u7b49\u529f\u80fd\u3002\n\nMicrosoft Exchange Server\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u3002",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2025-30572",
"openTime": "2025-12-12",
"patchDescription": "Microsoft Exchange Server\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4e00\u5957\u7535\u5b50\u90ae\u4ef6\u670d\u52a1\u7a0b\u5e8f\u3002\u5b83\u63d0\u4f9b\u90ae\u4ef6\u5b58\u53d6\u3001\u50a8\u5b58\u3001\u8f6c\u53d1\uff0c\u8bed\u97f3\u90ae\u4ef6\uff0c\u90ae\u4ef6\u8fc7\u6ee4\u7b5b\u9009\u7b49\u529f\u80fd\u3002\r\n\r\nMicrosoft Exchange Server\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Microsoft Exchange Server\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2025-3057284\uff09\u7684\u8865\u4e01",
"products": {
"product": "Microsoft Exchange Server"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2025-64666",
"serverity": "\u9ad8",
"submitTime": "2025-12-12",
"title": "Microsoft Exchange Server\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff08CNVD-2025-3057284\uff09"
}
GHSA-MR7P-99H9-V459
Vulnerability from github – Published: 2025-12-09 18:30 – Updated: 2025-12-09 18:30
VLAI?
Details
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.
Severity ?
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2025-64666"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-12-09T18:16:05Z",
"severity": "HIGH"
},
"details": "Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.",
"id": "GHSA-mr7p-99h9-v459",
"modified": "2025-12-09T18:30:47Z",
"published": "2025-12-09T18:30:47Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64666"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
NCSC-2025-0385
Vulnerability from csaf_ncscnl - Published: 2025-12-09 18:42 - Updated: 2025-12-09 18:42Summary
Kwetsbaarheden verholpen in Microsoft Exchange
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Microsoft heeft kwetsbaarheden verholpen in Exchange.
Interpretaties: Een geauthenticeerde kwaadwillende kan de kwetsbaarheden misbruiken om zich voor te doen als andere gebruiker of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gevoelige gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.
Oplossingen: Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:
https://portal.msrc.microsoft.com/en-us/security-guidance
Kans: medium
Schade: medium
CWE-20: Improper Input Validation
CWE-451: User Interface (UI) Misrepresentation of Critical Information
Improper input validation in Microsoft Exchange Server allows an authorized attacker to gain elevated privileges within a network environment.
CWE-20 - Improper Input ValidationAffected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2016 Cumulative Update 23
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2019 Cumulative Update 14
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2019 Cumulative Update 15
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server Subscription Edition RTM
|
vers:unknown/* |
A vulnerability in Microsoft Exchange Server allows unauthorized attackers to spoof information over a network due to user interface misrepresentation.
CWE-451 - User Interface (UI) Misrepresentation of Critical InformationAffected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2016 Cumulative Update 23
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2019 Cumulative Update 14
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server 2019 Cumulative Update 15
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Exchange Server Subscription Edition RTM
|
vers:unknown/* |
References
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Microsoft heeft kwetsbaarheden verholpen in Exchange.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een geauthenticeerde kwaadwillende kan de kwetsbaarheden misbruiken om zich voor te doen als andere gebruiker of zich verhoogde rechten toe te kennen en zo mogelijk toegang te krijgen tot gevoelige gegevens waartoe de kwaadwillende aanvankelijk niet is geautoriseerd.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:\n\nhttps://portal.msrc.microsoft.com/en-us/security-guidance",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "medium",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "User Interface (UI) Misrepresentation of Critical Information",
"title": "CWE-451"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"title": "Kwetsbaarheden verholpen in Microsoft Exchange",
"tracking": {
"current_release_date": "2025-12-09T18:42:32.332749Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0385",
"initial_release_date": "2025-12-09T18:42:32.332749Z",
"revision_history": [
{
"date": "2025-12-09T18:42:32.332749Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2016 Cumulative Update 23"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2019 Cumulative Update 14"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2019 Cumulative Update 15"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server Subscription Edition RTM"
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-64666",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "description",
"text": "Improper input validation in Microsoft Exchange Server allows an authorized attacker to gain elevated privileges within a network environment.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64666 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64666.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4"
]
}
],
"title": "CVE-2025-64666"
},
{
"cve": "CVE-2025-64667",
"cwe": {
"id": "CWE-451",
"name": "User Interface (UI) Misrepresentation of Critical Information"
},
"notes": [
{
"category": "other",
"text": "User Interface (UI) Misrepresentation of Critical Information",
"title": "CWE-451"
},
{
"category": "description",
"text": "A vulnerability in Microsoft Exchange Server allows unauthorized attackers to spoof information over a network due to user interface misrepresentation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64667 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-64667.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4"
]
}
],
"title": "CVE-2025-64667"
}
]
}
WID-SEC-W-2025-2781
Vulnerability from csaf_certbund - Published: 2025-12-09 23:00 - Updated: 2026-01-19 23:00Summary
Microsoft Windows: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Windows ist ein Betriebssystem von Microsoft.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server ausnutzen, um beliebigen Programmcode auszuführen, Rechte zu eskalieren, vertrauliche Informationen auszulesen oder den Host zum Absturz zu bringen.
Betroffene Betriebssysteme: - Windows
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
Affected products
Known affected
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Windows Server 2025
Microsoft
|
cpe:/o:microsoft:windows_server_2025:-
|
— | |
|
Microsoft Windows Server 2022
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:-
|
— | |
|
Microsoft Windows 10
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:-
|
— | |
|
Microsoft Windows 10 Version 21H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_21h2
|
Version 21H2 | |
|
Microsoft Windows 11 Version 22H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 10 Version 22H2
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_22h2
|
Version 22H2 | |
|
Microsoft Windows 11 Version 23H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_23h2
|
Version 23H2 | |
|
Microsoft Windows Server 2008 SP2
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_sp2
|
2008 SP2 | |
|
Microsoft Windows Server 2012
Microsoft
|
cpe:/o:microsoft:windows_server_2012:-
|
— | |
|
Microsoft Windows Server 2012 R2
Microsoft
|
cpe:/o:microsoft:windows_server_2012_r2:-
|
— | |
|
Microsoft Exchange Server 2019 Cumulative Update 15
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_15
|
Cumulative Update 15 | |
|
Microsoft Windows Server 2022 23H2 Edition
Microsoft / Windows Server 2022
|
cpe:/o:microsoft:windows_server_2022:23h2_edition
|
23H2 Edition | |
|
Microsoft Windows Server 2016
Microsoft
|
cpe:/o:microsoft:windows_server_2016:-
|
— | |
|
Microsoft Windows 11 Version 24H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:version_24h2
|
Version 24H2 | |
|
Microsoft Windows Server 2008 R2 SP1
Microsoft / Windows Server
|
cpe:/o:microsoft:windows_server:2008_r2_sp1
|
2008 R2 SP1 | |
|
Microsoft Windows 10 Version 1607
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1607
|
Version 1607 | |
|
Microsoft Windows 10 Version 1809
Microsoft / Windows 10
|
cpe:/o:microsoft:windows_10:version_1809
|
Version 1809 | |
|
Microsoft Windows Server 2019
Microsoft
|
cpe:/o:microsoft:windows_server_2019:-
|
— | |
|
Hitachi Storage
Hitachi
|
cpe:/h:hitachi:storage:-
|
— | |
|
Microsoft Windows 11 Version 25H2
Microsoft / Windows 11
|
cpe:/o:microsoft:windows_11:windows_terminal
|
Version 25H2 | |
|
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft / Exchange Server 2016
|
cpe:/a:microsoft:exchange_server_2016:cumulative_update_23
|
Cumulative Update 23 | |
|
Microsoft Exchange Server 2019 Cumulative Update 14
Microsoft / Exchange Server 2019
|
cpe:/a:microsoft:exchange_server_2019:cumulative_update_14
|
Cumulative Update 14 |
References
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Windows ist ein Betriebssystem von Microsoft.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Microsoft Windows und Microsoft Windows Server ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Rechte zu eskalieren, vertrauliche Informationen auszulesen oder den Host zum Absturz zu bringen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2781 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2781.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2781 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2781"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates",
"url": "https://msrc.microsoft.com/update-guide/"
},
{
"category": "external",
"summary": "Hitachi Vulnerability Information HITACHI-SEC-2025-313 vom 2026-01-20",
"url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2025/12.html"
}
],
"source_lang": "en-US",
"title": "Microsoft Windows: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-01-19T23:00:00.000+00:00",
"generator": {
"date": "2026-01-20T08:04:31.986+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2025-2781",
"initial_release_date": "2025-12-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-12-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-01-19T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von HITACHI aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Hitachi Storage",
"product": {
"name": "Hitachi Storage",
"product_id": "T009295",
"product_identification_helper": {
"cpe": "cpe:/h:hitachi:storage:-"
}
}
}
],
"category": "vendor",
"name": "Hitachi"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Cumulative Update 23",
"product": {
"name": "Microsoft Exchange Server 2016 Cumulative Update 23",
"product_id": "T047632",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:exchange_server_2016:cumulative_update_23"
}
}
}
],
"category": "product_name",
"name": "Exchange Server 2016"
},
{
"branches": [
{
"category": "product_version",
"name": "Cumulative Update 14",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 14",
"product_id": "T047633",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:exchange_server_2019:cumulative_update_14"
}
}
},
{
"category": "product_version",
"name": "Cumulative Update 15",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 15",
"product_id": "T047634",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:exchange_server_2019:cumulative_update_15"
}
}
}
],
"category": "product_name",
"name": "Exchange Server 2019"
},
{
"branches": [
{
"category": "product_version",
"name": "Version 1607",
"product": {
"name": "Microsoft Windows 10 Version 1607",
"product_id": "T042601",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_1607"
}
}
},
{
"category": "product_version",
"name": "Version 1809",
"product": {
"name": "Microsoft Windows 10 Version 1809",
"product_id": "T042602",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_1809"
}
}
},
{
"category": "product_version",
"name": "Version 21H2",
"product": {
"name": "Microsoft Windows 10 Version 21H2",
"product_id": "T042606",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_21h2"
}
}
},
{
"category": "product_version",
"name": "Version 22H2",
"product": {
"name": "Microsoft Windows 10 Version 22H2",
"product_id": "T042608",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:version_22h2"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows 10",
"product": {
"name": "Microsoft Windows 10",
"product_id": "T047095",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_10:-"
}
}
}
],
"category": "product_name",
"name": "Windows 10"
},
{
"branches": [
{
"category": "product_version",
"name": "Version 25H2",
"product": {
"name": "Microsoft Windows 11 Version 25H2",
"product_id": "T025567",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_11:windows_terminal"
}
}
},
{
"category": "product_version",
"name": "Version 22H2",
"product": {
"name": "Microsoft Windows 11 Version 22H2",
"product_id": "T042607",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_11:version_22h2"
}
}
},
{
"category": "product_version",
"name": "Version 23H2",
"product": {
"name": "Microsoft Windows 11 Version 23H2",
"product_id": "T042609",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_11:version_23h2"
}
}
},
{
"category": "product_version",
"name": "Version 24H2",
"product": {
"name": "Microsoft Windows 11 Version 24H2",
"product_id": "T042611",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_11:version_24h2"
}
}
}
],
"category": "product_name",
"name": "Windows 11"
},
{
"branches": [
{
"category": "product_version",
"name": "2008 SP2",
"product": {
"name": "Microsoft Windows Server 2008 SP2",
"product_id": "T042596",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server:2008_sp2"
}
}
},
{
"category": "product_version",
"name": "2008 R2 SP1",
"product": {
"name": "Microsoft Windows Server 2008 R2 SP1",
"product_id": "T045208",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server:2008_r2_sp1"
}
}
}
],
"category": "product_name",
"name": "Windows Server"
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2012",
"product": {
"name": "Microsoft Windows Server 2012",
"product_id": "T043730",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2012:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2012 R2",
"product": {
"name": "Microsoft Windows Server 2012 R2",
"product_id": "T043731",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2012_r2:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2016",
"product": {
"name": "Microsoft Windows Server 2016",
"product_id": "T042600",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2016:-"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2019",
"product": {
"name": "Microsoft Windows Server 2019",
"product_id": "T042603",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2019:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "23H2 Edition",
"product": {
"name": "Microsoft Windows Server 2022 23H2 Edition",
"product_id": "T042610",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2022:23h2_edition"
}
}
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2022",
"product": {
"name": "Microsoft Windows Server 2022",
"product_id": "T047093",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2022:-"
}
}
}
],
"category": "product_name",
"name": "Windows Server 2022"
},
{
"category": "product_name",
"name": "Microsoft Windows Server 2025",
"product": {
"name": "Microsoft Windows Server 2025",
"product_id": "T047092",
"product_identification_helper": {
"cpe": "cpe:/o:microsoft:windows_server_2025:-"
}
}
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54100",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-54100"
},
{
"cve": "CVE-2025-55233",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-55233"
},
{
"cve": "CVE-2025-59516",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-59516"
},
{
"cve": "CVE-2025-59517",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-59517"
},
{
"cve": "CVE-2025-62221",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62221"
},
{
"cve": "CVE-2025-62454",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62454"
},
{
"cve": "CVE-2025-62455",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62455"
},
{
"cve": "CVE-2025-62456",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62456"
},
{
"cve": "CVE-2025-62457",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62457"
},
{
"cve": "CVE-2025-62458",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62458"
},
{
"cve": "CVE-2025-62461",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62461"
},
{
"cve": "CVE-2025-62462",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62462"
},
{
"cve": "CVE-2025-62463",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62463"
},
{
"cve": "CVE-2025-62464",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62464"
},
{
"cve": "CVE-2025-62465",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62465"
},
{
"cve": "CVE-2025-62466",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62466"
},
{
"cve": "CVE-2025-62467",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62467"
},
{
"cve": "CVE-2025-62468",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62468"
},
{
"cve": "CVE-2025-62469",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62469"
},
{
"cve": "CVE-2025-62470",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62470"
},
{
"cve": "CVE-2025-62472",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62472"
},
{
"cve": "CVE-2025-62473",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62473"
},
{
"cve": "CVE-2025-62474",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62474"
},
{
"cve": "CVE-2025-62549",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62549"
},
{
"cve": "CVE-2025-62565",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62565"
},
{
"cve": "CVE-2025-62567",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62567"
},
{
"cve": "CVE-2025-62569",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62569"
},
{
"cve": "CVE-2025-62570",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62570"
},
{
"cve": "CVE-2025-62571",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62571"
},
{
"cve": "CVE-2025-62572",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62572"
},
{
"cve": "CVE-2025-62573",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-62573"
},
{
"cve": "CVE-2025-64658",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64658"
},
{
"cve": "CVE-2025-64661",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64661"
},
{
"cve": "CVE-2025-64666",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64666"
},
{
"cve": "CVE-2025-64667",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64667"
},
{
"cve": "CVE-2025-64670",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64670"
},
{
"cve": "CVE-2025-64673",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64673"
},
{
"cve": "CVE-2025-64678",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64678"
},
{
"cve": "CVE-2025-64679",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64679"
},
{
"cve": "CVE-2025-64680",
"product_status": {
"known_affected": [
"T047092",
"T047093",
"T047095",
"T042606",
"T042607",
"T042608",
"T042609",
"T042596",
"T043730",
"T043731",
"T047634",
"T042610",
"T042600",
"T042611",
"T045208",
"T042601",
"T042602",
"T042603",
"T009295",
"T025567",
"T047632",
"T047633"
]
},
"release_date": "2025-12-09T23:00:00.000+00:00",
"title": "CVE-2025-64680"
}
]
}
BDU:2025-15519
Vulnerability from fstec - Published: 09.12.2025
VLAI Severity ?
Title
Уязвимость почтового сервера Microsoft Exchange Server, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю повысить свои привилегии
Description
Уязвимость почтового сервера Microsoft Exchange Server связана с недостаточной проверкой вводимых данных. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, повысить свои привилегии
Severity ?
Vendor
Microsoft Corp
Software Name
Microsoft Exchange Server 2019 Cumulative Update 14, Microsoft Exchange Server Subscription Edition RTM, Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 15
Software Version
до 15.02.1544.037 (Microsoft Exchange Server 2019 Cumulative Update 14), до 15.02.2562.035 (Microsoft Exchange Server Subscription Edition RTM), до 15.01.2507.063 (Microsoft Exchange Server 2016 Cumulative Update 23), до 15.02.1748.042 (Microsoft Exchange Server 2019 Cumulative Update 15)
Possible Mitigations
Использование рекомендаций производителя:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666
Reference
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS 3.0": "AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 15.02.1544.037 (Microsoft Exchange Server 2019 Cumulative Update 14), \u0434\u043e 15.02.2562.035 (Microsoft Exchange Server Subscription Edition RTM), \u0434\u043e 15.01.2507.063 (Microsoft Exchange Server 2016 Cumulative Update 23), \u0434\u043e 15.02.1748.042 (Microsoft Exchange Server 2019 Cumulative Update 15)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.12.2025",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "10.12.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "10.12.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-15519",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2025-64666",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Microsoft Exchange Server 2019 Cumulative Update 14, Microsoft Exchange Server Subscription Edition RTM, Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 15",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0447\u0442\u043e\u0432\u043e\u0433\u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0430 Microsoft Exchange Server, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0447\u0442\u043e\u0432\u043e\u0433\u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0430 Microsoft Exchange Server \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
MSRC_CVE-2025-64666
Vulnerability from csaf_microsoft - Published: 2025-12-09 00:00 - Updated: 2025-12-09 00:00Summary
Microsoft Exchange Server Elevation of Privilege Vulnerability
Severity
Important
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
Customer Action: Required. The vulnerability documented by this CVE requires customer action to resolve.
CWE-20
- Improper Input Validation
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Exchange Server 2016 Cumulative Update 23 15.01.2507.063
Microsoft Exchange Server 2016 Cumulative Update 23
|
15.01.2507.063 | ||
|
Microsoft Exchange Server 2019 Cumulative Update 14 15.02.1544.037
Microsoft Exchange Server 2019 Cumulative Update 14
|
15.02.1544.037 | ||
|
Microsoft Exchange Server 2019 Cumulative Update 15 15.02.1748.042
Microsoft Exchange Server 2019 Cumulative Update 15
|
15.02.1748.042 | ||
|
Microsoft Exchange Server Subscription Edition RTM 15.02.2562.035
Microsoft Exchange Server Subscription Edition RTM
|
15.02.2562.035 |
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Microsoft Exchange Server Subscription Edition RTM <15.02.2562.035
Microsoft Exchange Server Subscription Edition RTM
|
<15.02.2562.035 |
Vendor Fix
fix
|
|
|
Microsoft Exchange Server 2019 Cumulative Update 15 <15.02.1748.042
Microsoft Exchange Server 2019 Cumulative Update 15
|
<15.02.1748.042 |
Vendor Fix
fix
|
|
|
Microsoft Exchange Server 2019 Cumulative Update 14 <15.02.1544.037
Microsoft Exchange Server 2019 Cumulative Update 14
|
<15.02.1544.037 |
Vendor Fix
fix
|
|
|
Microsoft Exchange Server 2016 Cumulative Update 23 <15.01.2507.063
Microsoft Exchange Server 2016 Cumulative Update 23
|
<15.01.2507.063 |
Vendor Fix
fix
|
Threats
Impact
Elevation of Privilege
Exploit Status
Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely
References
Acknowledgments
National Security Agency
{
"document": {
"acknowledgments": [
{
"names": [
"National Security Agency"
]
}
],
"aggregate_severity": {
"namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
},
{
"category": "general",
"text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
"title": "Customer Action"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
},
{
"category": "self",
"summary": "CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-64666.json"
},
{
"category": "external",
"summary": "Microsoft Exploitability Index",
"url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Microsoft Exchange Server Elevation of Privilege Vulnerability",
"tracking": {
"current_release_date": "2025-12-09T00:00:00.000Z",
"generator": {
"date": "2026-02-20T15:58:59.004Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-64666",
"initial_release_date": "2025-12-09T00:00:00.000Z",
"revision_history": [
{
"date": "2025-12-09T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.02.1748.042",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 15 \u003c15.02.1748.042",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "15.02.1748.042",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 15 15.02.1748.042",
"product_id": "12502"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2019 Cumulative Update 15"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.01.2507.063",
"product": {
"name": "Microsoft Exchange Server 2016 Cumulative Update 23 \u003c15.01.2507.063",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "15.01.2507.063",
"product": {
"name": "Microsoft Exchange Server 2016 Cumulative Update 23 15.01.2507.063",
"product_id": "12039"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2016 Cumulative Update 23"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.02.2562.035",
"product": {
"name": "Microsoft Exchange Server Subscription Edition RTM \u003c15.02.2562.035",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "15.02.2562.035",
"product": {
"name": "Microsoft Exchange Server Subscription Edition RTM 15.02.2562.035",
"product_id": "16792"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server Subscription Edition RTM"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c15.02.1544.037",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 14 \u003c15.02.1544.037",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "15.02.1544.037",
"product": {
"name": "Microsoft Exchange Server 2019 Cumulative Update 14 15.02.1544.037",
"product_id": "12293"
}
}
],
"category": "product_name",
"name": "Microsoft Exchange Server 2019 Cumulative Update 14"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-64666",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "general",
"text": "Microsoft",
"title": "Assigning CNA"
},
{
"category": "faq",
"text": "Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.",
"title": "According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?"
},
{
"category": "faq",
"text": "For Exchange Server 2016 and 2019, update links are not provided because these versions are out of support and security updates are only available through the Extended Security Update (ESU) program.\nCustomers enrolled in ESU can access the December 2025 and future updates, while those not enrolled should migrate to Exchange Server Subscription Edition (SE) to continue receiving security updates. If you have purchased ESU and need assistance accessing updates, contact Microsoft at **ExchangeandSfBServerESUInquiry@service.microsoft.com. **\nFor more details, see the official blog post.",
"title": "Why are update links missing for some Exchange products?"
},
{
"category": "faq",
"text": "An attacker who successfully exploited this vulnerability could gain administrator privileges.",
"title": "What privileges could be gained by an attacker who successfully exploited the vulnerability?"
}
],
"product_status": {
"fixed": [
"12039",
"12293",
"12502",
"16792"
],
"known_affected": [
"1",
"2",
"3",
"4"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability - HTML",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
},
{
"category": "self",
"summary": "CVE-2025-64666 Microsoft Exchange Server Elevation of Privilege Vulnerability - CSAF",
"url": "https://msrc.microsoft.com/csaf/advisories/2025/msrc_cve-2025-64666.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-12-09T00:00:00.000Z",
"details": "15.02.1748.042:Security Update:https://support.microsoft.com/help/5071875",
"product_ids": [
"2"
],
"url": "https://support.microsoft.com/help/5071875"
},
{
"category": "vendor_fix",
"date": "2025-12-09T00:00:00.000Z",
"details": "15.01.2507.063:Security Update:https://support.microsoft.com/help/5071873",
"product_ids": [
"4"
],
"url": "https://support.microsoft.com/help/5071873"
},
{
"category": "vendor_fix",
"date": "2025-12-09T00:00:00.000Z",
"details": "15.02.2562.035:Security Update:https://support.microsoft.com/help/5071876",
"product_ids": [
"1"
],
"url": "https://support.microsoft.com/help/5071876"
},
{
"category": "vendor_fix",
"date": "2025-12-09T00:00:00.000Z",
"details": "15.02.1544.037:Security Update:https://support.microsoft.com/help/5071874",
"product_ids": [
"3"
],
"url": "https://support.microsoft.com/help/5071874"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"exploitCodeMaturity": "UNPROVEN",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"remediationLevel": "OFFICIAL_FIX",
"reportConfidence": "CONFIRMED",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4"
]
}
],
"threats": [
{
"category": "impact",
"details": "Elevation of Privilege"
},
{
"category": "exploit_status",
"details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely"
}
],
"title": "Microsoft Exchange Server Elevation of Privilege Vulnerability"
}
]
}
FKIE_CVE-2025-64666
Vulnerability from fkie_nvd - Published: 2025-12-09 18:16 - Updated: 2026-01-02 21:15
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.
References
| URL | Tags | ||
|---|---|---|---|
| secure@microsoft.com | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | exchange_server | * | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2016 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 | |
| microsoft | exchange_server | 2019 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:*:*:*:*:subscription:*:*:*",
"matchCriteriaId": "AD6F2ED1-498D-489C-8F5A-4EBDF3AB854D",
"versionEndExcluding": "15.02.2562.035",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:-:*:*:*:*:*:*",
"matchCriteriaId": "8039FBA1-73D4-4FF2-B183-0DCC961CBFF7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_1:*:*:*:*:*:*",
"matchCriteriaId": "56728785-188C-470A-9692-E6C7235109CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_10:*:*:*:*:*:*",
"matchCriteriaId": "63E362CB-CF75-4B7E-A4B1-D6D84AFCBB68",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_11:*:*:*:*:*:*",
"matchCriteriaId": "9BE04790-85A2-4078-88CE-1787BC5172E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_12:*:*:*:*:*:*",
"matchCriteriaId": "CCF101BE-27FD-4E2D-A694-C606BD3D1ED7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_13:*:*:*:*:*:*",
"matchCriteriaId": "4DF5BDB5-205D-4B64-A49A-0152AFCF4A13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_14:*:*:*:*:*:*",
"matchCriteriaId": "55284CF7-0D04-4216-83FE-4B1F9CA94207",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_15:*:*:*:*:*:*",
"matchCriteriaId": "CA2CE223-AA49-49E6-AC32-59270EFF55AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_16:*:*:*:*:*:*",
"matchCriteriaId": "4830D6A9-AF74-480C-8F69-8648CD619980",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_17:*:*:*:*:*:*",
"matchCriteriaId": "079E1E3F-FF25-4B0D-AC98-191D6455A014",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_18:*:*:*:*:*:*",
"matchCriteriaId": "29805EC7-6403-44B9-91EC-109C087E98EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_19:*:*:*:*:*:*",
"matchCriteriaId": "28FCA0E8-7D27-4746-9731-91B834CA3E64",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_2:*:*:*:*:*:*",
"matchCriteriaId": "996163E7-6F3F-4D3B-AEA4-62A7F7E1F54D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_20:*:*:*:*:*:*",
"matchCriteriaId": "19C1EE0C-B8DD-4B91-BE4B-1C42D72FB718",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_21:*:*:*:*:*:*",
"matchCriteriaId": "3BE427A4-B0C2-4064-8234-29426325C348",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_22:*:*:*:*:*:*",
"matchCriteriaId": "449CE85B-E599-44D3-A7C1-5133F6A55E86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_3:*:*:*:*:*:*",
"matchCriteriaId": "FE401B0A-DDE4-4A36-8E27-6DB14E094BE2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_4:*:*:*:*:*:*",
"matchCriteriaId": "450319C4-7C8F-43B7-B7F8-80DA4F1F2817",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_5:*:*:*:*:*:*",
"matchCriteriaId": "23015889-48AF-40A5-862F-290E73A54E77",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_6:*:*:*:*:*:*",
"matchCriteriaId": "4FC34516-D7E7-4AD9-9B45-5474831548E0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_7:*:*:*:*:*:*",
"matchCriteriaId": "5211792E-5292-41C0-B7E9-8AA63EC606EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_8:*:*:*:*:*:*",
"matchCriteriaId": "075E907F-AF2F-4C31-86C7-51972BE412A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_9:*:*:*:*:*:*",
"matchCriteriaId": "69AF19DC-3D65-49A8-A85F-511085CDF27B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:-:*:*:*:*:*:*",
"matchCriteriaId": "40D8A6DB-9225-4A3F-AD76-192F6CCCF002",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_1:*:*:*:*:*:*",
"matchCriteriaId": "051DE6C4-7456-4C42-BC51-253208AADB4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_10:*:*:*:*:*:*",
"matchCriteriaId": "B4185347-EEDD-4239-9AB3-410E2EC89D2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_11:*:*:*:*:*:*",
"matchCriteriaId": "435343A4-BF10-461A-ABF2-D511A5FBDA75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_12:*:*:*:*:*:*",
"matchCriteriaId": "B23C8E3E-5243-4DA6-B9AA-F6053084B55E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_13:*:*:*:*:*:*",
"matchCriteriaId": "583745C7-B802-4CBE-BD88-B5B9AF9B5371",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_2:*:*:*:*:*:*",
"matchCriteriaId": "EE320413-D2C9-4B28-89BF-361B44A3F0FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_3:*:*:*:*:*:*",
"matchCriteriaId": "104F96DC-E280-4E0A-8586-B043B55888C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_4:*:*:*:*:*:*",
"matchCriteriaId": "73B3B3FE-7E85-4B86-A983-2C410FFEF4B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_5:*:*:*:*:*:*",
"matchCriteriaId": "8A9FB275-7F17-48B2-B528-BE89309D2AF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_6:*:*:*:*:*:*",
"matchCriteriaId": "D4AB3C25-CEA8-4D66-AEE4-953C8B17911A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_7:*:*:*:*:*:*",
"matchCriteriaId": "36CE5C6D-9A04-41F5-AE7C-265779833649",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_8:*:*:*:*:*:*",
"matchCriteriaId": "44ECF39A-1DE1-4870-A494-06A53494338D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_9:*:*:*:*:*:*",
"matchCriteriaId": "71CDF29B-116B-4DE2-AFD0-B62477FF0AEB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper input validation in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network."
}
],
"id": "CVE-2025-64666",
"lastModified": "2026-01-02T21:15:10.337",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2025-12-09T18:16:05.910",
"references": [
{
"source": "secure@microsoft.com",
"tags": [
"Vendor Advisory"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64666"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secure@microsoft.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…