vulnerability

Microsoft Exchange: CVE-2018-8604: Microsoft Exchange Server Tampering Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:L/Au:S/C:N/I:P/A:N)	Dec 12, 2018	Aug 10, 2023	Jun 3, 2026

Severity

CVSS

(AV:N/AC:L/Au:S/C:N/I:P/A:N)

Published

Dec 12, 2018

Added

Aug 10, 2023

Modified

Jun 3, 2026

Description

A tampering vulnerability exists when Microsoft Exchange Server fails to properly handle profile data, aka "Microsoft Exchange Server Tampering Vulnerability." This affects Microsoft Exchange Server.

Solutions

microsoft-exchange-exchange_server_2016_CU10-kb4468741microsoft-exchange-exchange_server_2016_CU11-kb4468741

References

CVE-2018-8604
https://attackerkb.com/topics/CVE-2018-8604
EUVD-EUVD-2018-20219
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-20219
https://support.microsoft.com/help/4468741

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report