Sep 2019:
CVE-2019-1266 Published on September 11, 2019

A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web App (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'.

NVD

Products Associated with CVE-2019-1266

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-1266 are published in these products:

Microsoft Exchange Server

Microsoft Exchange Server 2016

Microsoft Exchange Server 2019

Affected Versions

Microsoft Exchange Server 2016:

Version Cumulative Update 12 is affected.
Version Cumulative Update 13 is affected.

Microsoft Exchange Server 2019:

Version Cumulative Update 1 is affected.
Version Cumulative Update 2 is affected.

Exploit Probability

EPSS

0.38%

Percentile

59.10%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Sep 2019: CVE-2019-1266 Published on September 11, 2019

Products Associated with CVE-2019-1266

Affected Versions

Exploit Probability

Sep 2019:
CVE-2019-1266 Published on September 11, 2019