KLA11420
Multiple vulnerabilities in Microsoft Exchange Server

Updated: 06/03/2020
Detect date
?
02/12/2019
Severity
?
High
Description

Multiple elevation of privilege vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges.

Affected products

Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 26
Microsoft Exchange Server 2016 Cumulative Update 12
Microsoft Exchange Server 2013 Cumulative Update 22
Microsoft Exchange Server 2019 Cumulative Update 1

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2019-0724
CVE-2019-0686
ADV190004

Impacts
?
PE 
[?]
Related products
Microsoft Exchange Server
CVE-IDS
?
CVE-2019-07249.3Critical
CVE-2019-06865.8High
KB list

4471391
4471392
4487052
4345836

Microsoft official advisories
Microsoft Security Update Guide
Find out the statistics of the vulnerabilities spreading in your region