CVE-2021-26855 Information
Share on:
Jun 06, 2022
cve
Description
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26412 CVE-2021-26854 CVE-2021-26857 CVE-2021-26858 CVE-2021-27065 CVE-2021-27078.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26855 http://packetstormsecurity.com/files/161846/Microsoft-Exchange-2019-SSRF-Arbitrary-File-Write.html http://packetstormsecurity.com/files/161938/Microsoft-Exchange-ProxyLogon-Remote-Code-Execution.html http://packetstormsecurity.com/files/162610/Microsoft-Exchange-2019-Unauthenticated-Email-Download.html http://packetstormsecurity.com/files/162736/Microsoft-Exchange-ProxyLogon-Collector.html
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8