KEV Entry

CVE-2021-34473

Known Exploited Vulnerability Entry External Catalog

Back to Catalog View Vulnerability
Entry Details
Confirmed Exploited

CVE-2021-34473

2021-11-03 00:00 UTC

Timestamps

2021-11-03

2021-11-03

Scope

KEVIntel entry: Microsoft Exchange Server Remote Code Execution Vulnerability | Affected: Microsoft / Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 9, Microsoft Exchange Server 2016 Cumulative Update 20, Microsoft Exchange Server 2016 Cumulative Update 19, Microsoft Exchange Server 2019 Cumulative Update 8 | CVSS: 9.1 (CRITICAL) | EPSS: 0.99999 | Used in malware: yes | Not yet in CISA KEV: False

References
  • {'id': 'CVE-2021-34473', 'url': 'https://www.cve.org/CVERecord?id=CVE-2021-34473'}
  • {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2021-34473'}

4b6bffb0-0cbb-4f1a-844d-91bdc2f63c8a

caeb2787-0d58-4236-9039-7c86c3e566f3

2026-06-19 12:47 UTC

2026-06-19 12:47 UTC

Evidence
1
Type Source Signal Confidence Details GCVE Metadata
public_report kevintel confirmed_compromise 0.70
View details 
{
  "added_date": "2021-11-03T00:00:00.000Z",
  "ahead_of_cisa_kev": null,
  "cvss_score": 9.1,
  "cvss_severity": "CRITICAL",
  "epss_percentile": 0.99998,
  "epss_score": 0.99999,
  "feed": "KEVIntel (kevintel.com)",
  "not_yet_in_cisa_kev": false,
  "product": "Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 9, Microsoft Exchange Server 2016 Cumulative Update 20, Microsoft Exchange Server 2016 Cumulative Update 19, Microsoft Exchange Server 2019 Cumulative Update 8",
  "title": "Microsoft Exchange Server Remote Code Execution Vulnerability",
  "used_in_malware": "yes",
  "vendor": "Microsoft"
}
 -
Export Options
JSON Object JSON API View Full Catalog