CVE Catalog

CVE-2025-25006

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.79%

51th percentile - higher than 51% of all known CVEs

Summary

Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

Risk Assessment

An attacker can impersonate other sources, leading to potential security breaches and loss of trust in network communication.

Recommendation

It is recommended to update Microsoft Exchange Server to the latest version and monitor network traffic for suspicious activities.

Original NVD description (English source)

Improper handling of additional special element in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS