PULSE
LIVE22signals / 24h
FEED
ransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Services
← All CVEs
CVE Watch

CVE-2024-21410

Microsoft Exchange Server Privilege Escalation Vulnerability

CVSS

No CVSS

EPSS

12.7%

p96

KEV

YES

Feb 15, 2024

Exploit Today

79

0-100

Published: · Last modified:

EPSS · 30d
12.7%EPSS · 30 days12.7%
2026-06-302026-07-16
KEV catalog record

Product

Microsoft / Exchange Server

Vulnerability

Microsoft Exchange Server Privilege Escalation Vulnerability

Added to KEV

Feb 15, 2024

Remediate by

Mar 7, 2024

Known ransomware use

No

Summary description

Microsoft Exchange Server contains an unspecified vulnerability that allows for privilege escalation.

Required action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Notes

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21410; https://nvd.nist.gov/vuln/detail/CVE-2024-21410

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2021-34473
100.0%
KEV80Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2021-26855
100.0%
KEV80Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2021-27065
100.0%
KEV80Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2022-41040
100.0%
KEV80Microsoft Exchange Server Server-Side Request Forgery Vulnerability
CVE-2021-34523
100.0%
KEV80Microsoft Exchange Server Privilege Escalation Vulnerability
CVE-2022-41082
100.0%
KEV80Microsoft Exchange Server Remote Code Execution Vulnerability