First published: Tue Aug 09 2022(Updated: )
Microsoft Exchange Server Elevation of Privilege Vulnerability
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Exchange Server | =2019 CU14 | |
Microsoft Exchange Server | ||
Microsoft Exchange Server | =2013-cumulative_update_23 | |
Microsoft Exchange Server | =2016-cumulative_update_22 | |
Microsoft Exchange Server | =2016-cumulative_update_23 | |
Microsoft Exchange Server | =2019-cumulative_update_11 | |
Microsoft Exchange Server | =2019-cumulative_update_12 | |
=11 | ||
=23 | ||
=22 | ||
=23 | ||
=12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2022-21980 is a vulnerability in Microsoft Exchange Server that allows an attacker to elevate their privileges.
CVE-2022-21980 is classified as a critical vulnerability with a severity value of 8 out of 10.
Microsoft Exchange Server 2016 versions 22 and 23, Microsoft Exchange Server 2013 version 23, and Microsoft Exchange Server 2019 versions 11 and 12 are affected by CVE-2022-21980.
To fix CVE-2022-21980, you should apply the relevant patches provided by Microsoft Exchange Server.
You can find more information about CVE-2022-21980 on the Microsoft Security Response Center website.