Microsoft Exchange Remote Code Execution Vulnerability
https://www.microsoft.com/en-us/security/blog/2023/03/24/guidance-for-investigating-attacks-using-cve-2023-23397/
https://media.defense.gov/2021/Jul/01/2002753896/-1/-1/1/CSA_GRU_GLOBAL_BRUTE_FORCE_CAMPAIGN_UOO158036-21.PDF
https://www.justice.gov/opa/page/file/1098481/download
https://www.tenable.com/blog/government-advisories-warn-of-apt-activity-resulting-from-russian-invasion-of-ukraine
https://www.tenable.com/blog/microsoft-s-december-2020-patch-tuesday-addresses-58-cves-including-cve-2020-25705-sad-dns
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-17144
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17144
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-17144
Source: Mitre, NVD
Published: 2020-12-10
Updated: 2025-10-22
Known Exploited Vulnerability (KEV)
Base Score: 6
Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P
Severity: Medium
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: High
EPSS: 0.92725
