CVE-2022-34692

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-34692
Microsoft Exchange Server Information Disclosure Vulnerability

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34692
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34692
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_22:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_23:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_11:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_12:*:*:*:*:*:*
History

05 Jun 2025, 19:15

Type Values Removed Values Added
CWE CWE-200

21 Nov 2024, 07:09

Type Values Removed Values Added
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34692 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34692 -

31 May 2023, 19:15

Type Values Removed Values Added
Summary Microsoft Exchange Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21979, CVE-2022-30134. Microsoft Exchange Server Information Disclosure Vulnerability
References
  • {'url': 'https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34692', 'name': 'N/A', 'tags': ['Patch', 'Vendor Advisory'], 'refsource': 'N/A'}
  • (MISC) https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34692 -

12 Aug 2022, 19:17

Type Values Removed Values Added
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_22:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_23:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_12:*:*:*:*:*:*
cpe:2.3:a:microsoft:exchange_server:2019:cumulative_update_11:*:*:*:*:*:*
References (N/A) https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34692 - (N/A) https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34692 - Patch, Vendor Advisory

09 Aug 2022, 20:15

Type Values Removed Values Added
New CVE
Information

Published : 2022-08-09 20:15

Updated : 2025-06-05 19:15

NVD link : CVE-2022-34692

Mitre link : CVE-2022-34692

CVE.ORG link : CVE-2022-34692

JSON object : View

Products Affected

microsoft

  • exchange_server
CWE
NVD-CWE-noinfo CWE-200

Exposure of Sensitive Information to an Unauthorized Actor