The U.S. National Security Agency has warned about a post-auth remote code execution vulnerability in all supported Microsoft Exchange Server servers. The vulnerability would enable attackers to execute commands on vulnerable Microsoft Exchange servers using email credentials. Microsoft patched the vulnerability as part of the February 2020 Patch Tuesday. State-backed advanced persistent threats (APT) groups have already exploited the CVE-2020-0688 flaw, researchers at security firm Volexity said. A new module targeting this flaw was added by Rapid7 to the Metasploit pen-testing tool following multiple proof-of-concept exploits.
Source: https://www.bleepingcomputer.com/news/security/nsa-warns-about-microsoft-exchange-flaw-as-attacks-start/