CVE-2020-17144
8.4HIGHMicrosoft Exchange Remote Code Execution Vulnerability
Published: 12/10/2020Updated: 10/29/2025
CISA Known Exploited Vulnerability
Microsoft Exchange Server improperly validates cmdlet arguments which allow an attacker to perform remote code execution.
Required Action:
Apply updates per vendor instructions.
Due Date:
2022-05-03
Description
Microsoft Exchange Remote Code Execution Vulnerability
AI AnalysisPowered by AI
Affected Products
microsoftexchange_server
2010
References
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-17144PatchVendor Advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17144PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-17144US Government Resource