CVE-2022-21978 is a vulnerability in Microsoft Exchange Server
Published on May 10, 2022

Microsoft Exchange Server Elevation of Privilege Vulnerability

Vendor Advisory NVD

Products Associated with CVE-2022-21978

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-21978 are published in Microsoft Exchange Server:

Microsoft Exchange Server

Affected Versions

Microsoft Exchange Server 2016 Cumulative Update 22:

Version 15.0.0 and below 15.01.2375.028 is affected.

Microsoft Exchange Server 2019 Cumulative Update 11:

Version 15.02.0 and below 15.02.0986.026 is affected.

Microsoft Exchange Server 2013 Cumulative Update 23:

Version 15.00.0 and below 15.00.1497.36 is affected.

Microsoft Exchange Server 2016 Cumulative Update 23:

Version 15.01.0 and below 15.01.2507.009 is affected.

Microsoft Exchange Server 2019 Cumulative Update 12:

Version 15.02.0 and below 15.02.1118.009 is affected.

Exploit Probability

EPSS

0.52%

Percentile

66.44%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-21978 is a vulnerability in Microsoft Exchange ServerPublished on May 10, 2022

Products Associated with CVE-2022-21978

Affected Versions

Exploit Probability

CVE-2022-21978 is a vulnerability in Microsoft Exchange Server
Published on May 10, 2022