CVE-2020-0688: Microsoft Exchange Server Validation Key Remote Code

Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability. Microsoft Exchange Server Validation Key fails to properly create unique keys at install time, allowing for remote code execution.

• CISA KEV-listed (remediation due 2022-05-03)
• used in ransomware campaigns
• EPSS 94.4% (100.0% percentile)

Detection rules

• CVE-2020-0688 Exploitation Attempt high
• CVE-2020-0688 Exchange Exploitation via Web Log critical
• CVE-2020-0688 Exploitation via Eventlog high

Browse the CVE database

Read the full analysis on IntelFusions