Medium severity5.3NVD Advisory· Published Sep 13, 2017· Updated Jun 17, 2026
CVE-2017-11761
CVE-2017-11761
Description
Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016 allow an input sanitization issue with Microsoft Exchange that could potentially result in unintended Information Disclosure, aka "Microsoft Exchange Information Disclosure Vulnerability"
Affected products
7cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_16:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_16:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_17:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:2013:sp1:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_5:*:*:*:*:*:*
- cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_6:*:*:*:*:*:*
- (no CPE)
- Microsoft Corporation/Microsoft Exchange Serverv5Range: Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11761nvdPatchVendor Advisory
- www.securityfocus.com/bid/100731nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039320nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.