Calendar Contributors Privilege Escalation in Microsoft Exchange Server

Calendar Contributors Privilege Escalation in Microsoft Exchange Server

CVE-2019-0588 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An information disclosure vulnerability exists when the Microsoft Exchange PowerShell API grants calendar contributors more view permissions than intended, aka "Microsoft Exchange Information Disclosure Vulnerability." This affects Microsoft Exchange Server.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.