CVE Catalog

CVE-2025-25005

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.27%

66th percentile - higher than 66% of all known CVEs

Summary

Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network.

Risk Assessment

The organization may be exposed to attacks that could lead to unauthorized access or data modification.

Recommendation

It is recommended to conduct a security audit and update the system to the latest version to minimize risk.

Original NVD description (English source)

Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS