Thousands of Microsoft Exchange servers are vulnerable to RCE vulnerabilities

From en.secnews.gr

Microsoft Exchange servers

More than 247.000 Microsoft Exchange servers need to be informed to deal with vulnerability CVE-2020-0688, which allows remote code execution (RCE) and affects all Exchange Server versions.

RCE Vulnerability CVE-2020-0688 is located at Exchange Control Panel (ECP) component – which is enabled by default – and can be used by attackers who want to take control of vulnerable Exchange servers through valid e-mail credentials.

Read more…