CVE-2017-8758

Summary

Microsoft Exchange Server 2016 allows an elevation of privilege vulnerability when Microsoft Exchange Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Cross-Site Scripting Vulnerability."

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft Exchange Server 2016Microsoft Exchange Server 2016 Cumulative Update 6affected

Weaknesses

  • Elevation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References