CVE-2021-31196 - Microsoft Exchange Server Information Disclosure Vulnerability

CVE-2021-31196: Microsoft | Exchange Server

Date Added:
2024-08-21

Due Date:
2024-09-11

Vulnerability Name: Microsoft Exchange Server Information Disclosure Vulnerability

Description: Microsoft Exchange Server contains an information disclosure vulnerability that allows for remote code execution.

Known To Be Used in Ransomware Campaigns?: Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes: https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-31196; https://nvd.nist.gov/vuln/detail/CVE-2021-31196