CVE-2020-17085: Microsoft Exchange Server Denial of Service Vulnerability
Overview
- Severity
- Medium (CVSS 6.2)
- CVSS Vector
- CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C
- Category
- Denial of Service
- Exploit Status
- Not Exploited
- Exploitation Likelihood
- Less Likely
- Patch Tuesday
- 2020-Nov
- Released
- 2020-11-10
- EPSS Score
- 3.62% (percentile: 87.8%)
Affected Products (5)
Server Software
- Microsoft Exchange Server 2019 Cumulative Update 6
- Microsoft Exchange Server 2016 Cumulative Update 17
- Microsoft Exchange Server 2019 Cumulative Update 7
- Microsoft Exchange Server 2016 Cumulative Update 18
- Microsoft Exchange Server 2013 Cumulative Update 23
Security Updates (5)
Acknowledgments
Steven Seeley (mr_me) of <a href="https://srcincite.io/">Source Incite</a>
Revision History
- 2020-11-10: Information published.