Microsoft exchange server 2019
This hub aggregates every CVE we track for Microsoft exchange server 2019, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
13
CVEs tracked
2
Critical
6
High
4
In CISA KEV
Severity distribution
HIGH6MEDIUM5CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 13 most recently published vulnerabilities affecting Microsoft exchange server 2019.
- CVE-2021-27065Microsoft Exchange Server Remote Code Execution VulnerabilityKEV7.8
- CVE-2021-26858Microsoft Exchange Server Remote Code Execution VulnerabilityKEV7.8
- CVE-2021-26855Microsoft Exchange Server Remote Code Execution VulnerabilityKEV9.1
- CVE-2021-26857Microsoft Exchange Server Remote Code Execution VulnerabilityKEV7.8
- CVE-2019-1373A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'.9.8
- CVE-2019-1266A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web App (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'.6.1
- CVE-2019-1233A denial of service vulnerability exists in Microsoft Exchange Server software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Denial of Service Vulnerability'.7.5
- CVE-2019-1137A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange S...5.4
- CVE-2019-1084An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerabili...6.5
- CVE-2019-0858A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'. This CVE ID is uni...6.1
- CVE-2019-0817A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'. This CVE ID is uni...5.4
- CVE-2019-0724An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0686.8.1
- CVE-2019-0686An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka 'Microsoft Exchange Server Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0724.7.4
Product normalization is registry-driven with AI assist and human review. How it works