From en.secnews.gr
More than 247.000 Microsoft Exchange servers need to be informed to deal with vulnerability CVE-2020-0688, which allows remote code execution (RCE) and affects all Exchange Server versions.
RCE Vulnerability CVE-2020-0688 is located at Exchange Control Panel (ECP) component – which is enabled by default – and can be used by attackers who want to take control of vulnerable Exchange servers through valid e-mail credentials.