CNNVD-202508-1118 Information
CNNVD ID
CNNVD-202508-1118
Related CVE
- CNNVD Published: 2025-08-12
Description (Chinese)
Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序。它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。 Microsoft Exchange Server存在输入验证错误漏洞,该漏洞源于输入验证不正确。以下产品和版本受到影响:Microsoft Exchange Server 2019 Cumulative Update 14,Microsoft Exchange Server 2016 Cumulative Update 23,Microsoft Exchange Server 2019 Cumulative Update 15,Microsoft Exchange Server Subscription Edition RTM。
Description (English)
Microsoft Exchange Server is an e-mail service for Microsoft (MSC) in the United States. It provides e-mail access, storage, forwarding, voice mail and mail filtering. Microsoft Exchange Server has an input validation error loophole, which results from incorrect input authentication. The following products and versions have been affected: Microsoft Exchange Server 2019 Cumulative Update 14, Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 15, Microsoft Exchange Server Subscription Assessment RTM.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
微软
Published
2025-08-12
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25005 https://nvd.nist.gov/vuln/detail/CVE-2025-25005
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25005
Share on: