CISA Known Exploited Vulnerability (KEV)
Microsoft Exchange Server Privilege Escalation Vulnerability
February 15, 2024
March 7, 2024
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Description
Microsoft Exchange Server Elevation of Privilege Vulnerability
Weakness Enumeration
CWE-ID | CWE Name |
---|---|
CWE-287 |
Improper Authentication |