Microsoft · Exchange Outlook Web Access · CVE-2018-8152
**Name of the Vulnerable Software and Affected Versions**
Microsoft Exchange Server (affected versions not specified)
**Description**
An issue exists where Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests. This could allow an attacker to perform script or content injection attacks and potentially trick users into disclosing sensitive information.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.