CVE Catalog

CVE-2026-45503

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.45%

36th percentile - higher than 36% of all known CVEs

Summary

An improper authorization vulnerability in Microsoft Exchange Server allows an authorized attacker to disclose information over a network.

Risk Assessment

The risk involves potential leakage of sensitive organizational data, such as emails or calendar data, by an authorized user.

Recommendation

It is recommended to immediately apply the security update provided by Microsoft for Exchange Server.

Original NVD description (English source)

Improper authorization in Microsoft Exchange Server allows an authorized attacker to disclose information over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS