| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Known vulnerabilities affecting Exchange products and systems
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2021-42321 | Microsoft Exchange Server Remote Code Execution Vulnerability | 8.8 | 927 | Neutral | Yes |
| Yes |
| CVE-2021-42305 | Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-41349. | 6.5 | 311 | Neutral | Yes | Yes |
| CVE-2021-41350 | Microsoft Exchange Server Spoofing Vulnerability | 6.5 | 209 | Neutral | No | Yes |
| CVE-2021-41349 | Microsoft Exchange Server Spoofing Vulnerability This CVE ID is unique from CVE-2021-42305. | 6.5 | 311 | Neutral | Yes | Yes |
| CVE-2021-41348 | Microsoft Exchange Server Elevation of Privilege Vulnerability | 8.0 | 462 | Neutral | No | Yes |
| CVE-2021-40426 | A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buf... | 8.8 | 775 | Neutral | Yes | Yes |
| CVE-2021-37852 | ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to escalate privileges in the context of NT AUTHORITY\SYSTEM. | 7.8 | 495 | Neutral | No | Yes |
| CVE-2021-37851 | Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the installer to run malicious code with higher privileges. This issue aff... | 7.8 | 431 | Neutral | No | Yes |
| CVE-2021-3643 | A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global-buffer-overflow. This flaw allows an attacker to input a malicious file, leading to the disclosure of sensit... | 9.1 | 653 | Neutral | No | Yes |
| CVE-2021-34523 | Microsoft Exchange Server Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33768, CVE-2021-34470. | 9.0 | 703 | Neutral | Yes | Yes |
| CVE-2021-34473 | Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-31206. | 9.1 | 837 | Rising | Yes | Yes |
| CVE-2021-34470 | Microsoft Exchange Server Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33768, CVE-2021-34523. | 8.0 | 563 | Neutral | Yes | Yes |
| CVE-2021-34453 | Microsoft Exchange Server Denial of Service Vulnerability | 7.5 | 386 | Neutral | No | Yes |
| CVE-2021-33844 | A floating point exception (divide-by-zero) issue was discovered in SoX in functon startread() of wav.c file. An attacker with a crafted wav file, could cause an application to crash. | 5.5 | 227 | Neutral | Yes | Yes |
| CVE-2021-33768 | Microsoft Exchange Server Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-34470, CVE-2021-34523. | 8.0 | 462 | Neutral | No | Yes |
| CVE-2021-33766 | Microsoft Exchange Information Disclosure Vulnerability | 7.3 | 450 | Neutral | Yes | Yes |
| CVE-2021-3146 | The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows allows local users to gain privileges. | 7.8 | 431 | Neutral | No | Yes |
| CVE-2021-31209 | Microsoft Exchange Server Spoofing Vulnerability | 6.5 | 216 | Neutral | No | Yes |
| CVE-2021-31207 | Microsoft Exchange Server Security Feature Bypass Vulnerability | 6.6 | 482 | Neutral | Yes | Yes |
| CVE-2021-31206 | Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-34473. | 7.6 | 627 | Neutral | Yes | Yes |