CVE-2026-55009
Severity CVSS v4.0:
Pending analysis
Type:
CWE-502
Deserialization of Untrusted Dat
Publication date:
14/07/2026
Last modified:
15/07/2026
Description
Deserialization of untrusted data in Microsoft Exchange Server allows an authorized attacker to elevate privileges locally.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH



