Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2021-26854

6.6MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Exchange Server 2016 Cumulative Update 19; Microsoft Exchange Server 2019 Cumulative Update 8; Microsoft Exchange Server 2013 Cumulative Update 23; Microsoft Exchange Server 2019 Cumulative Update 7
Vendor: CVE Published:; 3 March 2021

What is CVE-2021-26854?

Microsoft Exchange Server Remote Code Execution Vulnerability

Microsoft Exchange Server 2013 Cumulative Update 23 x64-based Systems 15.00.0

Microsoft Exchange Server 2016 Cumulative Update 18 x64-based Systems 15.01.0

Microsoft Exchange Server 2016 Cumulative Update 19 x64-based Systems 15.01.0

Score:

6.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

CVE-2021-26854 Data