CVE Catalog

CVE-2026-21527

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Very high risk
9.46%

95th percentile - higher than 95% of all known CVEs

Summary

A flaw in the user interface of Microsoft Exchange Server leads to misrepresentation of critical information, allowing an unauthorized attacker to perform spoofing over a network.

Risk Assessment

The organization may be exposed to attacks that could result in loss of user trust and leakage of sensitive information.

Recommendation

It is recommended to update Microsoft Exchange Server to the latest version and monitor the user interface for potential anomalies.

Original NVD description (English source)

User interface (ui) misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS