CVE-2018-8302

Summary

A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Exchange Server2010 Service Pack 3 Update Rollup 23affected
MicrosoftMicrosoft Exchange Server2013 Cumulative Update 20affected
MicrosoftMicrosoft Exchange Server2013 Cumulative Update 21affected
MicrosoftMicrosoft Exchange Server2016 Cumulative Update 10affected
MicrosoftMicrosoft Exchange Server2016 Cumulative Update 9affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References