VYPR
Medium severity5.3NVD Advisory· Published Sep 13, 2017· Updated Jun 17, 2026

CVE-2017-11761

CVE-2017-11761

Description

Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016 allow an input sanitization issue with Microsoft Exchange that could potentially result in unintended Information Disclosure, aka "Microsoft Exchange Information Disclosure Vulnerability"

Affected products

7
  • cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_16:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_16:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_17:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2013:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_5:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_6:*:*:*:*:*:*
    • (no CPE)
  • Microsoft Corporation/Microsoft Exchange Serverv5
    Range: Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.