First published: Tue Feb 14 2023(Updated: )
Microsoft Exchange Server Remote Code Execution Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Exchange Server | =2013-cumulative_update_23 | |
Microsoft Exchange Server | =2016-cumulative_update_23 | |
Microsoft Exchange Server | =2019-cumulative_update_11 | |
Microsoft Exchange Server | =2019-cumulative_update_12 | |
Microsoft Exchange Server 2016 | =23 | |
Microsoft Exchange Server 2019 | =12 | |
Microsoft Exchange Server 2019 | =11 | |
Microsoft Exchange Server 2013 | =23 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-21707 is a vulnerability that allows remote code execution in Microsoft Exchange Server.
CVE-2023-21707 has a severity value of 8.8, which is considered high.
CVE-2023-21707 affects Microsoft Exchange Server 2013 (Cumulative Update 23), 2016 (Cumulative Update 23), and 2019 (Cumulative Update 11 and 12).
To fix CVE-2023-21707, apply the corresponding cumulative update provided by Microsoft or follow the remediation steps provided in the official documentation.
You can find more information about CVE-2023-21707 on the Microsoft Security Response Center website.