CVE-2017-11932

Summary

Microsoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5 allow a spoofing vulnerability due to the way Outlook Web Access (OWA) validates web requests, aka "Microsoft Exchange Spoofing Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft Exchange ServerMicrosoft Exchange Server 2016 CU5 and Microsoft Exchange Server 2016 CU5affected

Weaknesses

  • Spoofing

ADP Enrichment

CVE Program Container

Additional References

References