CVE-2020-17141: Microsoft Exchange Remote Code Execution Vulnerability

Overview

Severity

High (CVSS 8.4)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C

Category

Remote Code Execution

Exploit Status

Not Exploited

Exploitation Likelihood

Less Likely

Patch Tuesday

2020-Dec

Released

2020-12-08

EPSS Score

29.17% (percentile: 96.6%)

FAQ

What can cause this vulnerability? The vulnerability occurs due to improper validation of cmdlet arguments. Does the attacker need to be in an authenticated role in the Exchange Server? Yes, the attacker must be authenticated.

Affected Products (4)

Server Software

• Microsoft Exchange Server 2019 Cumulative Update 6
• Microsoft Exchange Server 2016 Cumulative Update 17
• Microsoft Exchange Server 2019 Cumulative Update 7
• Microsoft Exchange Server 2016 Cumulative Update 18

Security Updates (4)

• 4593465
• 4593465
• 4593465
• 4593465

Acknowledgments

Steven Seeley (mr_me) of <a href="https://srcincite.io/">Source Incite</a>

Revision History

• 2020-12-08: Information published.