CVE-2024-26198

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 12, 2024

Updated: May 29, 2024

CWE ID 426

Summary

CVE-2024-26198 is a newly disclosed remote code execution vulnerability affecting Microsoft Exchange Servers. An attacker can exploit this flaw by sending specially crafted emails to targets, potentially gaining control over the affected system. Successful exploitation could allow the attacker to install programs, view, change, or delete data, and create new accounts with full user rights. Organizations using Microsoft Exchange Server are advised to apply the available patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uhXcyF
https://www.cve.org/CVERecord?id=CVE-2024-26198
https://nvd.nist.gov/vuln/detail/CVE-2024-26198

Back to Vulnerability Database

CVE-2024-26198

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations