<< Back
CVE Number Vulnerability Product Severity Date
CVE-2020-17132 Microsoft Exchange Remote Code Execution Vulnerability Microsoft Exchange Server Critical 11-12-2020

Technical Information

Brief overview of the risk:

A remote code execution vulnerability exists in Microsoft Exchange. The vulnerability occurs due to improper validation of cmdlet arguments. An authenticated attacker can exploit this vulnerability by passing a specially crafted input to Microsoft Exchange as cmdlet arguments.

Further information on this vulnerability is available at : CVE-2020-17132

Affected Software

Microsoft Exchange Server 2013 Cumulative Update 23
Microsoft Exchange Server 2019 Cumulative Update 6
Microsoft Exchange Server 2016 Cumulative Update 17
Microsoft Exchange Server 2019 Cumulative Update 7
Microsoft Exchange Server 2016 Cumulative Update 18