CVE-2026-42897

⚠ KEVEPSS 10.3%

Microsoft Exchange Server Cross-Site Scripting Vulnerability

加入 CISA KEV 日:2026/5/15

描述

Microsoft Exchange Server contains a cross-site scripting vulnerability during web page generation in Outlook Web Access and when certain interaction conditions are met, arbitrary JavaScript can be executed in the browser context.

受影響套件(0)

OSV 沒有提供套件對應。