Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.
Metrics
Affected Vendors & Products
References
History
Mon, 15 Jun 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Microsoft exchange Server Subscription Edition
|
|
| CPEs | cpe:2.3:a:microsoft:exchange_server_subscription_edition:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Microsoft exchange Server Subscription Edition
|
Mon, 15 Jun 2026 14:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Microsoft exchange Server
|
|
| CPEs | cpe:2.3:a:microsoft:exchange_server:*:*:*:*:subscription:*:*:* cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_23:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_14:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_15:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft exchange Server
|
Wed, 10 Jun 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 09 Jun 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Microsoft microsoft Exchange Server 2019 Cumulative Update 14
Microsoft microsoft Exchange Server 2019 Cumulative Update 15 Microsoft microsoft Exchange Server Subscription Edition Rtm |
|
| Vendors & Products |
Microsoft microsoft Exchange Server 2019 Cumulative Update 14
Microsoft microsoft Exchange Server 2019 Cumulative Update 15 Microsoft microsoft Exchange Server Subscription Edition Rtm |
Tue, 09 Jun 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network. | |
| Title | Microsoft Exchange Server Spoofing Vulnerability | |
| First Time appeared |
Microsoft
Microsoft exchange Server 2016 Microsoft exchange Server 2019 Microsoft exchange Server Se |
|
| Weaknesses | CWE-79 | |
| CPEs | cpe:2.3:a:microsoft:exchange_server_2016:*:cumulative_update_23:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_14:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server_2019:*:cumulative_update_15:*:*:*:*:*:* cpe:2.3:a:microsoft:exchange_server_se:*:RTM:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft
Microsoft exchange Server 2016 Microsoft exchange Server 2019 Microsoft exchange Server Se |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: microsoft
Published: 2026-06-09T17:05:03.380Z
Updated: 2026-07-08T23:23:20.950Z
Reserved: 2026-05-19T20:12:27.069Z
Link: CVE-2026-47631
Updated: 2026-06-10T14:24:23.722Z
Status : Analyzed
Published: 2026-06-09T17:17:35.173
Modified: 2026-06-15T19:20:08.503
Link: CVE-2026-47631
No data.