Vulnerabilities > Microsoft > Exchange Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-10 | CVE-2020-17144 | Deserialization of Untrusted Data vulnerability in Microsoft Exchange Server 2010 Microsoft Exchange Remote Code Execution Vulnerability | 8.4 |
| 2020-12-10 | CVE-2020-17143 | Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019 Microsoft Exchange Server Information Disclosure Vulnerability | 8.8 |
| 2020-12-10 | CVE-2020-17141 | Unspecified vulnerability in Microsoft Exchange Server 2016/2019 Microsoft Exchange Remote Code Execution Vulnerability | 8.4 |
| 2020-11-11 | CVE-2020-17084 | Classic Buffer Overflow vulnerability in Microsoft Exchange Server 2013/2016/2019 Microsoft Exchange Server Remote Code Execution Vulnerability | 8.5 |
| 2020-10-16 | CVE-2020-16969 | Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019 <p>An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages. | 7.1 |
| 2020-09-11 | CVE-2020-16875 | Improper Privilege Management vulnerability in Microsoft Exchange Server 2016/2019 <p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. | 8.4 |
| 2020-02-11 | CVE-2020-0692 | Unspecified vulnerability in Microsoft Exchange Server 2013/2016/2019 An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. | 8.1 |
| 2020-02-11 | CVE-2020-0688 | Improper Authentication vulnerability in Microsoft Exchange Server A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'. | 8.8 |
| 2019-09-11 | CVE-2019-1233 | Unspecified vulnerability in Microsoft Exchange Server 2016/2019 A denial of service vulnerability exists in Microsoft Exchange Server software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Denial of Service Vulnerability'. | 7.5 |
| 2019-07-15 | CVE-2019-1136 | Unspecified vulnerability in Microsoft Exchange Server 2010/2013 An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. | 8.1 |