PT-2023-1537 · Microsoft · Exchange Server

Zcgonvh

·

Publicado

2023-02-14

·

Atualizado

2024-05-29

·

CVE-2023-21706

CVSS v2.0

9.0

Alta

VetorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Microsoft Exchange Server (affected versions not specified)
Description The issue is related to errors in code generation management. It allows a remote attacker to execute arbitrary code.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Deserialization of Untrusted Data

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-502CWE-94

Identificadores relacionados

BDU:2023-00981
CVE-2023-21706

Produtos afetados

Exchange Server