CVE ID

CVE-2021-31207

Vulnerability Name

Microsoft Exchange Server Security Feature Bypass Vulnerability

• Project: Microsoft
• Product: Exchange Server

Date

• Date Added: 2021-11-03
• Due Date: 2021-11-17

Description

Microsoft Exchange Server contains an unspecified vulnerability that allows for security feature bypass.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-31207

Related Security News

• Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers
• Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal Conflicts
• CISA and FBI: Ghost ransomware breached orgs in 70 countries
• CISA says BianLian ransomware now focuses only on data theft
• Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East
• UK govt links 2021 Electoral Commission breach to Exchange server

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List