CVE-2019-0858

Summary

A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0817.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Exchange Server2019affected
MicrosoftMicrosoft Exchange Server 2016Cumulative Update 11affected
MicrosoftMicrosoft Exchange Server 2016Cumulative Update 12affected
MicrosoftMicrosoft Exchange Server 2013Cumulative Update 22affected
MicrosoftMicrosoft Exchange Server 2019Cumulative Update 1affected

Weaknesses

  • Spoofing

ADP Enrichment

CVE Program Container

Additional References

References