CVE-2020-16875: Microsoft Exchange Remote Code Execution Vulnerability Alert
Due to incorrect validation of cmdlet parameters, a remote code execution vulnerability exists in the Microsoft Exchange server. An attacker who successfully exploited this vulnerability could run arbitrary code in the context of the System user. The exploitation of the vulnerability requires an authenticated user in a certain Exchange role to be compromised.
- Microsoft exchange_server_2016: cu16/cu17
- Microsoft exchange_server_2019: cu5/cu6