Vulnerability in Microsoft Exchange Server

CVE-2019-0586

A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server.

EPSS: 0.260 (96.4th percentile) — read the EPSS interpretation.

Affected products

Microsoft Exchange Server — versions 2016 Cumulative Update 10, 2016 Cumulative Update 11, 2019

References

106421 (vdb-entry, x_refsource_BID)
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0586 (x_refsource_CONFIRM)