CVE-2019-0588
N/A
N/A
Summary
An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants calendar contributors more view permissions than intended, aka "Microsoft Exchange Information Disclosure Vulnerability." This affects Microsoft Exchange Server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft Exchange Server | 2010 Service Pack 3 Update Rollup 25 | affected |
| Microsoft | Microsoft Exchange Server | 2013 Cumulative Update 21 | affected |
| Microsoft | Microsoft Exchange Server | 2016 Cumulative Update 10 | affected |
| Microsoft | Microsoft Exchange Server | 2016 Cumulative Update 11 | affected |
| Microsoft | Microsoft Exchange Server | 2019 | affected |
Weaknesses
- Information Disclosure
ADP Enrichment
CVE Program Container
Additional References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0588
- http://www.securityfocus.com/bid/106437
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0588
- http://www.securityfocus.com/bid/106437
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.