CVE-2017-11761

medium

Description

Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016 allow an input sanitization issue with Microsoft Exchange that could potentially result in unintended Information Disclosure, aka "Microsoft Exchange Information Disclosure Vulnerability"

References

Advisories
More

http://www.securitytracker.com/id/1039320

http://www.securityfocus.com/bid/100731

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11761

Details

Source: Mitre, NVD

Published: 2017-09-13

Updated: 2025-04-20

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.063