CVE-2021-34523 - Microsoft Exchange Server Privilege Escalation Vulnerability

CVE ID:CVE-2021-34523

Project:Microsoft

Product:Exchange Server

Date Added:2021-11-03Due Date:2021-11-17

Vulnerability Name

Microsoft Exchange Server Privilege Escalation Vulnerability

Description

Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-34523

Related News Articles

Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal ConflictsFebruary 26, 2025

CISA and FBI: Ghost ransomware breached orgs in 70 countriesFebruary 20, 2025

CISA says BianLian ransomware now focuses only on data theftNovember 22, 2024

Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle EastSeptember 6, 2024

UK govt links 2021 Electoral Commission breach to Exchange serverJuly 30, 2024

Latest Security News

Top CVE List

Top Alert List

CSP
Content Security Policy (CSP) Header Not Set
MediumAbsence of Anti-CSRF Tokens
MediumMissing Anti-clickjacking Header
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
MediumContent Security Policy (CSP) Header Not Set
LowTimestamp Disclosure - Unix
LowCSP: X-Content-Security-Policy
InformationalRe-examine Cache-control Directives

Common CWEs