DEV Community

Cover image for CVE-2020-0688: Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability
Freedom Coder
Freedom Coder

Posted on • Edited on • Originally published at scyscan.com

CVE-2020-0688: Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability

CVE ID

CVE-2020-0688

Vulnerability Name

Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability

  • Project: Microsoft
  • Product: Exchange Server

Date

  • Date Added: 2021-11-03
  • Due Date: 2022-05-03

Description

Microsoft Exchange Server Validation Key fails to properly create unique keys at install time, allowing for remote code execution.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2020-0688

Related Security News

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List

Top comments (0)