CVE-2018-8374
Description
A tampering vulnerability exists when Microsoft Exchange Server fails to properly handle profile data, aka Microsoft Exchange Server Tampering Vulnerability. This affects Microsoft Exchange Server.
Risk Information
Base Score
4.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS Score
Exploitation Probability
3.247
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft Exchange Memory Corruption Vulnerability For Exchange Server 2013 CU20 (KB4340731) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability For Exchange Server 2016 CU10 (KB4340731) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability For Exchange Server 2013 CU21 (KB4340731) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-25132 | Security Update For Exchange Server 2013 CU20 (KB4340731) |
| PATCH-25133 | Security Update For Exchange Server 2016 CU10 (KB4340731) |
| PATCH-25134 | Security Update For Exchange Server 2013 CU21 (KB4340731) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234