QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2017-8560

Back to search

CVE-2017-8560

Published: Jul 11, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5 allows an elevation of privilege vulnerability due to the way that Exchange Outlook Web Access (OWA) handles web requests, aka "Microsoft Exchange Cross-Site Scripting Vulnerability". This CVE ID is unique from CVE-2017-8559.

VendorProductVersions

Microsoft Corporation

Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and Exchange Server 2016 CU5.

affected
Microsoft Exchange

References

99449
vdb-entry
x_refsource_BID
1038852
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now