{"@odata.context":"https://api.msrc.microsoft.com/sug/v2.0/sugodata/v2.0/en-US/$metadata#vulnerability/$entity","id":"00000000-0000-0000-0000-0000bcd185b9","releaseDate":"2021-05-11T07:00:00Z","cveNumber":"CVE-2021-31207","cveTitle":"Microsoft Exchange Server Security Feature Bypass Vulnerability","releaseNumber":"2021-May","vulnType":"Security Vulnerability","latestRevisionDate":"2023-10-26T07:00:00Z","cweList":[],"cweDetailsListForSearch":[],"mitreText":"CVE-2021-31207","mitreUrl":"https://www.cve.org/CVERecord?id=CVE-2021-31207","publiclyDisclosed":"Yes","exploited":"No","latestSoftwareReleaseId":2,"latestSoftwareRelease":"Exploitation Less Likely","olderSoftwareReleaseId":2,"olderSoftwareRelease":"Exploitation Less Likely","denialOfService":"N/A","tag":"Microsoft Exchange Server","issuingCna":"Microsoft","issuingCnaId":0,"severityId":100000002,"severity":"Moderate","impactId":100000000,"impact":"Defense in Depth","langCode":"en-US","baseScore":"6.6","temporalScore":"5.8","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C","isMariner":false,"customerActionRequired":true,"customerActionRequiredId":0,"cweDetailsList":[],"articles":[{"articleType":"FAQ","description":"<p><strong>Was this vulnerability found in the 2021 Pwn2Own contest?</strong></p>\n<p>Yes, this was one of the Exchange Server vulnerabilities found in the 2021 Pwn2Own contest.</p>\n","ordinal":10000},{"articleType":"FAQ","description":"<p><strong>According to the CVSS metric, the attack complexity is high (AC:H). What does that mean for this vulnerability?</strong></p>\n<p>Successful exploitation of this vulnerability requires an attacker to take additional actions prior to exploitation to prepare the target environment.</p>\n","ordinal":10000}],"revisions":[{"cveNumber":"CVE-2021-31207","version":1,"revisionDate":"2021-05-11T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Information published.</p>\n","unformattedDescription":"Information published.","notificationNeeded":false,"notificationSent":false,"sourceId":"b3ea40fb-bba3-eb11-a83e-000d3a6d3364"},{"cveNumber":"CVE-2021-31207","version":1.1,"revisionDate":"2023-10-26T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Added an FAQ. This is an information change only.</p>\n","unformattedDescription":"Added an FAQ. This is an information change only.","notificationNeeded":false,"notificationSent":false,"sourceId":"a120c1dc-4974-ee11-9365-000d3afbc7d7"}]}