CVE-2021-24085: Microsoft Exchange Server Spoofing Vulnerability

Overview

Severity

Medium (CVSS 6.5)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C

Category

Spoofing

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2021-Feb

Released

2021-02-09

EPSS Score

13.18% (percentile: 94.1%)

FAQ

What is the nature of the spoofing? An authenticated attacker can leak a cert file which results in a CSRF token to be generated.

Detection & Weaponization (1 sources)

Maturity: Exploit

• GitHub PoC: 1 repositories

Affected Products (4)

Exchange Server

• Microsoft Exchange Server 2019 Cumulative Update 8
• Microsoft Exchange Server 2016 Cumulative Update 19
• Microsoft Exchange Server 2019 Cumulative Update 7
• Microsoft Exchange Server 2016 Cumulative Update 18

Security Updates (3)

• 4602269
• 4602269
• 4602269

Acknowledgments

Steven Seeley (mr_me) of Source Incite <a href="https://srcincite.io/">Source Incite</a>

Revision History

• 2021-02-09: Information published.