Security updates have been released for Exchange 2013, Exchange 2016 and Exchange 2019.
- CVE-2020-17083: Microsoft Exchange Server Remote Code Execution Vulnerability
- CVE-2020-17084: Microsoft Exchange Server Remote Code Execution Vulnerability
- CVE-2020-17085: Microsoft Exchange Server Denial of Service Vulnerability
None of the vulnerabilities are currently publicly disclosed nor exploited. The Exploitability Assessment is rated: Exploitation Less Likely.
View: Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: November 10, 2020
Download: Security Update For Exchange Server 2019 CU7 (KB4588741)
Download: Security Update For Exchange Server 2019 CU6 (KB4588741)
Download: Security Update For Exchange Server 2016 CU18 (KB4588741)
Download: Security Update For Exchange Server 2016 CU17 (KB4588741)
Download: Security Update For Exchange Server 2013 CU23 (KB4588741)