CVE-2021-42321

Summary

Microsoft Exchange Server Remote Code Execution Vulnerability

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Exchange Server 2016 Cumulative Update 2115.01.0 < 15.01.2308.020affected
MicrosoftMicrosoft Exchange Server 2019 Cumulative Update 1015.02.0 < 15.02.0792.019affected
MicrosoftMicrosoft Exchange Server 2016 Cumulative Update 2215.0.0 < 15.01.2375.017affected
MicrosoftMicrosoft Exchange Server 2019 Cumulative Update 1115.02.0 < 15.02.0986.014affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References