Microsoft Outlook Security Feature Bypass Vulnerability
Microsoft Outlook Security Feature Bypass Vulnerability | ||
CVE name | CVE-2023-35311 | |
Severity/CVSS Score | High | CVSS:8.8 |
Exploitation Status | Exploited in the Wild as Zero-Day | |
Description | The vulnerability allows an attacker to bypass security features in Microsoft Outlook, potentially leading to unauthorized access or compromise of sensitive information. Exploitation of this vulnerability could occur through various means, such as phishing emails or malicious attachments. An attacker would need to create a specially crafted web page and cause a user to open it on a vulnerable system. | |
Affected Versions/Products | Microsoft 365 Apps for Enterprise for 32-bit Systems Microsoft 365 Apps for Enterprise for 64-bit Systems Microsoft Office 2019 for 32-bit editions Microsoft Office 2019 for 64-bit editions Microsoft Office LTSC 2021 for 64-bit editions Microsoft Office LTSC 2021 for 32-bit editions Microsoft Outlook 2013 (32-bit editions) 15.0.5571.1000 Microsoft Outlook 2013 (64-bit editions) 15.0.5571.1000 | |
Solutions | It is recommended to patch | |