Please be aware that Exchange 2013, Exchange 2016 and Exchange 2019 security updates were released as part of the December 2020 patch Tuesday release. The overall rating is critical, and the update resolves multiple issues.
Details for these, and previously released updates can be found in the Security Update Guide. Also note that Exchange 2010 SP3 RU31 was also released.
For all of the relevant details, please review the below links:
CVE-2020-17117 | Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17132 | Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17141 | Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17142 | Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17143 | Microsoft Exchange Information Disclosure Vulnerability
Cheers,
Rhoderick
