CVSS: 7.8EPSS: 4%CPEs: 6EXPL: 0CVE-2023-36893 – Microsoft Outlook Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-36893
08 Aug 2023 — Microsoft Outlook Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36893 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 24%CPEs: 6EXPL: 0CVE-2023-35311 – Microsoft Outlook Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-35311
11 Jul 2023 — Microsoft Outlook Security Feature Bypass Vulnerability Microsoft Outlook contains a security feature bypass vulnerability that allows an attacker to bypass the Microsoft Outlook Security Notice prompt. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35311 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 10.0EPSS: 10%CPEs: 9EXPL: 2CVE-2023-33131 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33131
13 Jun 2023 — Microsoft Outlook Remote Code Execution Vulnerability Microsoft Outlook suffers from a remote code execution via a maliciously crafted word file. • https://packetstorm.news/files/id/173361 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 93%CPEs: 6EXPL: 32CVE-2023-23397 – Microsoft Office Outlook Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-23397
14 Mar 2023 — Microsoft Outlook Elevation of Privilege Vulnerability Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against another service to authenticate as the user. • https://packetstorm.news/files/id/171376 • CWE-20: Improper Input Validation CWE-294: Authentication Bypass by Capture-replay •
CVSS: 7.8EPSS: 6%CPEs: 6EXPL: 0CVE-2022-35742 – Microsoft Outlook Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-35742
18 Aug 2022 — Microsoft Outlook Denial of Service Vulnerability Vulnerabilidad de denegación de servicios encontrada en Microsoft Outlook. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Outlook. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of MIME headers. Crafted MIME headers within an email message can cause Outlook to release an invalid pointer. An attacker can leverage this vulnerab... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35742 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-31949 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31949
08 Jun 2021 — Microsoft Outlook Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Outlook • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31949 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.8EPSS: 3%CPEs: 7EXPL: 0CVE-2021-31941 – Microsoft Office Graphics Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-31941
08 Jun 2021 — Microsoft Office Graphics Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Office Graphics. Este ID de CVE es diferente de CVE-2021-31940 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results fr... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31941 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28452 – Microsoft Outlook Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2021-28452
13 Apr 2021 — Microsoft Outlook Memory Corruption Vulnerability Una vulnerabilidad de Corrupción en la Memoria de Microsoft Outlook • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28452 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 5%CPEs: 5EXPL: 0CVE-2020-17119 – Microsoft Outlook Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-17119
09 Dec 2020 — Microsoft Outlook Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Outlook This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Outlook. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of MSG files. The issue results from the lack of proper validation of user-supplied data, ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17119 •
CVSS: 7.5EPSS: 1%CPEs: 26EXPL: 0CVE-2020-16949 – Microsoft Outlook Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2020-16949
16 Oct 2020 —
A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system.
Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outlook server.
The security update addresses the vulnerability by correcting how Microsoft Outlook handles objects in memory.
Se presenta una vul... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16949 • CWE-401: Missing Release of Memory after Effective Lifetime •