QID 50124

Date Published: 2023-01-11

QID 50124: Microsoft Exchange Server Multiple Vulnerabilities for January 2023

Microsoft Exchange Server 2013, 2016 and 2019 are affected by multiple vulnerabilities.

This QID covers detection for the following vulnerabilities:
Microsoft Exchange Server Information Disclosure Vulnerability(CVE-2023-21761)
Microsoft Exchange Server Spoofing Vulnerability (CVE-2023-21762)
Microsoft Exchange Server Elevation of Privilege Vulnerability(CVE-2023-21763)
Microsoft Exchange Server Elevation of Privilege Vulnerability(CVE-2023-21764)

Microsoft Exchange Server Spoofing Vulnerability.(CVE-2023-21745)

KB Articles associated with this update are: 5022143,5022193,KB5022188

Affected Versions:
Microsoft Exchange Server 2013 Cumulative Update 23
Microsoft Exchange Server 2016 Cumulative Update 23
Microsoft Exchange Server 2019 Cumulative Update 11
Microsoft Exchange Server 2019 Cumulative Update 12

QID Detection Logic (Authenticated):
The QID checks for vulnerable version of Microsoft Exchange Server by checking the file version of Exsetup.exe.

Successful exploitation of the vulnerability may allow information disclosure, spoofing attacks and privilege escalation.

CVSS V3 rated as High - 8 severity.

CVSS V2 rated as Critical - 8.3 severity.

Solution

Microsoft has released patch, customers are advised to refer to KB5022188 KB5022193 KB5022143 for information pertaining to this vulnerability.

Vendor References

CVE-2023-21745 - msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21745
CVE-2023-21761 - msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21761
CVE-2023-21762 - msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21762
CVE-2023-21763 - msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21763
CVE-2023-21764 - msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21764

CVEs related to QID 50124

CVE-2023-21761 | CVE-2023-21762 | CVE-2023-21763 | CVE-2023-21764 | CVE-2023-21745 |

Software Advisories

Advisory ID	Software	Component	Link
KB5022143			www.microsoft.com/en-us/download/details.aspx?id=104914
KB5022188			www.microsoft.com/en-us/download/details.aspx?id=104915
KB5022193			www.microsoft.com/en-us/download/details.aspx?id=104913

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Array ( [qid] => 50124 [title] => Microsoft Exchange Server Multiple Vulnerabilities for January 2023 [severity] => 4 [description] => Microsoft Exchange Server 2013, 2016 and 2019 are affected by multiple vulnerabilities.

Microsoft Exchange Server Spoofing Vulnerability.(CVE-2023-21745)

KB Articles associated with this update are: 5022143,5022193,KB5022188

QID Detection Logic (Authenticated):
The QID checks for vulnerable version of Microsoft Exchange Server by checking the file version of Exsetup.exe.

[solution] => Microsoft has released patch, customers are advised to refer to KB5022188 KB5022193 KB5022143 for information pertaining to this vulnerability.
[consequence] => Successful exploitation of the vulnerability may allow information disclosure, spoofing attacks and privilege escalation.

[published] => Yes [date_insert] => 2023-01-10 [date_published] => 2023-01-11 [cve] => Array ( [0] => CVE-2023-21761 [1] => CVE-2023-21762 [2] => CVE-2023-21763 [3] => CVE-2023-21764 [4] => CVE-2023-21745 ) [vendor_refs] => Array ( [0] => Array ( [vendor_ref] => CVE-2023-21745 [vendor_ref_url] => https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21745 ) [1] => Array ( [vendor_ref] => CVE-2023-21761 [vendor_ref_url] => https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21761 ) [2] => Array ( [vendor_ref] => CVE-2023-21762 [vendor_ref_url] => https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21762 ) [3] => Array ( [vendor_ref] => CVE-2023-21763 [vendor_ref_url] => https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21763 ) [4] => Array ( [vendor_ref] => CVE-2023-21764 [vendor_ref_url] => https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21764 ) ) [cvss_v2] => Array ( [basescore] => 8.3 [temporalscore] => 6.1 ) [cvss_v3] => Array ( [basescore] => 8 [temporalscore] => 7 ) [patches] => Array ( [0] => Array ( [link] => https://www.microsoft.com/en-us/download/details.aspx?id=104914 [advisory_id] => KB5022143 [os_sw] => [component] => ) [1] => Array ( [link] => https://www.microsoft.com/en-us/download/details.aspx?id=104915 [advisory_id] => KB5022188 [os_sw] => [component] => ) [2] => Array ( [link] => https://www.microsoft.com/en-us/download/details.aspx?id=104913 [advisory_id] => KB5022193 [os_sw] => [component] => ) ) )