Security updates have been released for Exchange 2016. It resolves the following vulnerability;
- CVE-2018-8604
A tampering vulnerability exists when Microsoft Exchange Server fails to properly handle profile data. An attacker who successfully exploited this vulnerability could modify a targeted user’s profile data.