A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.
https://www.zerodayinitiative.com/advisories/ZDI-20-258/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0688