What is CVE-2023-36745?

A high-severity vulnerability has been identified in Microsoft Exchange Server, allowing for remote code execution. Organizations should take immediate action to patch affected systems to mitigate risk.

What is the severity of CVE-2023-36745?

CVE-2023-36745 has a severity rating of HIGH with a CVSS base score of 8.

CVE-2023-36745 | High Vulnerability in Microsoft Exchange Server

CVE-2023-36745 describes a high-severity vulnerability found in Microsoft Exchange Server that allows for remote code execution. This vulnerability has a CVSS score of 8.0, highlighting its critical nature. Organizations using affected versions of Exchange Server may face significant risks if they do not address this vulnerability promptly.Risk to organizations includes potential unauthorized access and control over affected systems, which could lead to data breaches or system compromises. Since this vulnerability can be exploited over an adjacent network, it is imperative for organizations to prioritize remediation efforts immediately.As of now, there is evidence indicating that exploits for this vulnerability are available, increasing the urgency for organizations to patch their systems. Organizations should address this vulnerability in their priority patch cycle to mitigate the risks associated with it.

Vulnerability Details

The official description of this vulnerability states that it allows for remote code execution within Microsoft Exchange Server. It has been classified as a high-severity vulnerability with a CVSS score of 8.0. The vulnerability affects Microsoft Exchange Server 2016 (Cumulative Update 23) and Microsoft Exchange Server 2019 (Cumulative Updates 12 and 13). The vulnerability was published on September 12, 2023.

Technical Analysis

The root cause of CVE-2023-36745 is a flaw in Microsoft Exchange Server that leads to remote code execution. Attackers may leverage this vulnerability over an adjacent network, making it accessible without needing direct access to the system. The attack complexity is low, meaning that it does not require sophisticated skills to exploit. Privileges required for exploitation are also low, and user interaction is not necessary.Exploitation of this vulnerability could result in high impacts on confidentiality, integrity, and availability. Attackers could potentially gain control over sensitive data and disrupt services.

Risk & Impact Analysis

The real-world risk associated with CVE-2023-36745 is significant due to the nature of Microsoft Exchange Server being a critical component in many organizations' infrastructures. If exploited, the blast radius could affect not only the Exchange Server but also the interconnected systems, leading to extensive data breaches.Given the high CVSS score of 8.0 and the potential for active exploitation, organizations should prioritize immediate patching of their systems to prevent unauthorized access and control. The urgency is further highlighted by the EPSS score of 0.735, placing it in the 99th percentile, indicating a high likelihood of exploitation.

Exploitation Status

Signal	Status
Known Exploit	Yes
Public PoC	Yes
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions of Microsoft Exchange Server include: - Microsoft Exchange Server 2016 (Cumulative Update 23) - Microsoft Exchange Server 2019 (Cumulative Updates 12 and 13)Organizations not adhering to the latest patches are at risk.

Mitigation & Remediation

Organizations should prioritize applying the latest patches provided by Microsoft for their Exchange Server installations. The patch addresses this vulnerability and mitigates the associated risks. For those unable to immediately apply the patch, temporary workarounds may include limiting access to affected systems and ensuring that all security measures are in place.Security teams should also consider engaging in penetration testing to validate their security posture and identify any additional weaknesses.

Detection Guidance

To detect potential exploitation of CVE-2023-36745, organizations should monitor for unusual logins or changes in user behavior within the Exchange Server environment. Additionally, unusual system changes or performance issues can be indicative of exploitation attempts.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2023-36745 lies in its potential to disrupt organizational operations if not addressed. The vulnerability highlights the importance of timely patch management and proactive security measures.As organizations become increasingly reliant on cloud and on-premises email solutions, understanding vulnerabilities like this one is crucial. Security teams should also consider reviewing their vulnerability management program to ensure they are effectively mitigating risks.Additionally, as part of their security strategy, organizations should evaluate their approach to penetration testing methodology to identify and remediate vulnerabilities proactively.In light of the ongoing risks associated with remote execution vulnerabilities, organizations should ensure that their security posture is robust.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2023-36745: High Vulnerability in Microsoft Exchange Server