CVE-2018-8154

Summary

A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8151.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Exchange Server2010 Service Pack 3 Update Rollup 21affected
MicrosoftMicrosoft Exchange Server2013 Cumulative Update 19affected
MicrosoftMicrosoft Exchange Server2013 Cumulative Update 20affected
MicrosoftMicrosoft Exchange Server2013 Service Pack 1affected
MicrosoftMicrosoft Exchange Server2016 Cumulative Update 8affected
MicrosoftMicrosoft Exchange Server2016 Cumulative Update 9affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References