vulnerability

Microsoft Exchange: CVE-2020-16969: Microsoft Exchange Information Disclosure Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Oct 16, 2020	Aug 10, 2023	Jan 3, 2024

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Oct 16, 2020

Added

Aug 10, 2023

Modified

Jan 3, 2024

Description

An information disclosure vulnerability exists in how Microsoft Exchange validates tokens when handling certain messages, aka 'Microsoft Exchange Information Disclosure Vulnerability'.

Solution(s)

microsoft-exchange-exchange_server_2016_CU17-kb4581424microsoft-exchange-exchange_server_2016_CU18-kb4581424microsoft-exchange-exchange_server_2019_CU6-kb4581424microsoft-exchange-exchange_server_2019_CU7-kb4581424

References

CVE-2020-16969
https://attackerkb.com/topics/CVE-2020-16969
URL-https://support.microsoft.com/help/4581424

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today