CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
CVE-2020-17142 | Microsoft Exchange Remote Code Execution Vulnerability | Microsoft Exchange Server | Critical | 11-12-2020 |
Technical Information
Brief overview of the risk:
A remote code execution vulnerability exists in Microsoft Exchange. The vulnerability occurs due to improper validation of cmdlet arguments. An authenticated attacker can exploit this vulnerability by passing a specially crafted input to Microsoft Exchange as cmdlet arguments.
Further information on this vulnerability is available at : CVE-2020-17142
Affected Software
Microsoft Exchange Server 2013 Cumulative Update 23Microsoft Exchange Server 2019 Cumulative Update 6
Microsoft Exchange Server 2016 Cumulative Update 17
Microsoft Exchange Server 2019 Cumulative Update 7
Microsoft Exchange Server 2016 Cumulative Update 18