Description
Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote attackers to spoof meeting organizers via unspecified vectors, aka "Exchange Forged Meeting Request Spoofing Vulnerability."
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-026
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031900
Scores
EPSS
0.0915
EPSS Percentile
94.7%
Details
CWE
CWE-284
Status
published
Products (1)
microsoft/exchange_server
2013 cumulative_update_7 (2 CPE variants)
Published
Mar 11, 2015
Tracked Since
Feb 18, 2026