Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (251 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2020-0688 1 Microsoft 1 Exchange Server 2025-10-29 8.8 High
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.
CVE-2020-17144 1 Microsoft 1 Exchange Server 2025-10-29 8.4 High
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2024-21410 1 Microsoft 1 Exchange Server 2025-10-28 9.8 Critical
Microsoft Exchange Server Elevation of Privilege Vulnerability
CVE-2018-8581 1 Microsoft 1 Exchange Server 2025-10-28 7.4 High
An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka "Microsoft Exchange Server Elevation of Privilege Vulnerability." This affects Microsoft Exchange Server.
CVE-2023-36035 1 Microsoft 1 Exchange Server 2025-10-08 8 High
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-36039 1 Microsoft 1 Exchange Server 2025-10-08 8 High
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-36050 1 Microsoft 1 Exchange Server 2025-10-08 8 High
Microsoft Exchange Server Spoofing Vulnerability
CVE-2023-36439 1 Microsoft 1 Exchange Server 2025-10-08 8 High
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2020-17143 1 Microsoft 1 Exchange Server 2025-08-28 8.8 High
Microsoft Exchange Server Information Disclosure Vulnerability
CVE-2020-17142 1 Microsoft 1 Exchange Server 2025-08-28 9.1 Critical
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17141 1 Microsoft 1 Exchange Server 2025-08-28 8.4 High
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17132 1 Microsoft 1 Exchange Server 2025-08-28 9.1 Critical
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17117 1 Microsoft 1 Exchange Server 2025-08-28 6.6 Medium
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2024-49040 1 Microsoft 1 Exchange Server 2025-07-08 7.5 High
Microsoft Exchange Server Spoofing Vulnerability
CVE-2022-23277 1 Microsoft 1 Exchange Server 2025-07-08 8.8 High
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2022-24463 1 Microsoft 1 Exchange Server 2025-07-08 6.5 Medium
Microsoft Exchange Server Spoofing Vulnerability
CVE-2022-34692 1 Microsoft 1 Exchange Server 2025-06-05 5.3 Medium
Microsoft Exchange Server Information Disclosure Vulnerability
CVE-2024-26198 1 Microsoft 1 Exchange Server 2025-05-03 8.8 High
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2017-8542 1 Microsoft 11 Exchange Server, Forefront Security, Malware Protection Engine and 8 more 2025-04-20 N/A
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to denial of service. aka "Microsoft Malware Protection Engine Denial of Service Vulnerability", a different vulnerability than CVE-2017-8535, CVE-2017-8536, CVE-2017-8537, and CVE-2017-8539.
CVE-2017-8537 1 Microsoft 13 Endpoint Protection, Exchange Server, Forefront Endpoint Protection and 10 more 2025-04-20 5.5 Medium
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to denial of service. aka "Microsoft Malware Protection Engine Denial of Service Vulnerability", a different vulnerability than CVE-2017-8535, CVE-2017-8536, CVE-2017-8539, and CVE-2017-8542.