CVE-2019-0586
Description
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka Microsoft Exchange Memory Corruption Vulnerability. This affects Microsoft Exchange Server.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
20.842
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft Exchange Memory Corruption Vulnerability for Microsoft Exchange Server 2013 (KB4471389) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability for Microsoft Exchange Server 2019, 2016, and 2013 (KB4471389) x64 bases systems | Windows |
| Microsoft Exchange Memory Corruption Vulnerability for Microsoft Exchange Server 2019, 2016, and 2013 (KB4471389) | Windows |
| Microsoft Exchange Memory Corruption Vulnerability for Microsoft Exchange Server 2019, 2016, and 2013 (KB4471389_CU11) x64 bases systems | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-26011 | Description of the security update for Microsoft Exchange Server 2013 (KB4471389) |
| PATCH-26012 | Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013 (KB4471389) |
| PATCH-26013 | Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013 (KB4471389) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234