Description
A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka 'Microsoft Exchange Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-0858.
Affected products
- Microsoft / Microsoft Exchange Server2010 Service Pack 3 – 2010 Service Pack 3
- Microsoft / Microsoft Exchange Server2019 – 2019
- Microsoft / Microsoft Exchange Server 2013Cumulative Update 22 – Cumulative Update 22
- Microsoft / Microsoft Exchange Server 2016Cumulative Update 11 – Cumulative Update 11
- Microsoft / Microsoft Exchange Server 2016Cumulative Update 12 – Cumulative Update 12
- Microsoft / Microsoft Exchange Server 2019Cumulative Update 1 – Cumulative Update 1