CVE-2021-26858CISA KEVEPSS p99.8%

CVE-2021-26858Microsoft Exchange Server Remote Code Execution Vulnerability

Microsoft / Exchange Server

Description

Microsoft Exchange Server contains an unspecified vulnerability that allows for remote code execution. This vulnerability is part of the ProxyLogon exploit chain.

Scoring

EPSS89.51% probability of exploitation · percentile 99.8% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Exchange Server Remote Code Execution Vulnerabilitykev-cve-2021-268580%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2022-41082
CVE
Microsoft Exchange Server Information Disclosure Vulnerability
CVE
CVE-2022-41080
CVE
Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability
CVE
CVE-2026-45583
CVE
Microsoft Exchange Server Privilege Escalation Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.