VYPR
High severity8.8NVD Advisory· Published Oct 14, 2025· Updated Jun 15, 2026

CVE-2025-59249

CVE-2025-59249

Description

Weak authentication in Microsoft Exchange Server allows an authorized attacker to elevate privileges over a network.

Affected products

5
  • Microsoft/Exchange Serverllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 15.02.0.0
  • Microsoft/Microsoft Exchange Server 2016 Cumulative Update 23v5
    Range: 15.01.0.0
  • Microsoft/Microsoft Exchange Server 2019 Cumulative Update 14v5
    Range: 15.02.0.0
  • Microsoft/Microsoft Exchange Server 2019 Cumulative Update 15v5
    Range: 15.02.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.