~/cve/CVE-2023-36763

pipeline liveDigest Docs

CVE-2023-36763

published 2023-09-12

CVE-2023-36763: Microsoft Outlook Information Disclosure Vulnerability

high7.5CVSS 3.1

AVNACLPRNUINSUCHINAN

Microsoft Outlook Information Disclosure Vulnerability

Affected

16 ranges

Vendor	Product	Version range	Fixed in
microsoft	microsoft_365_apps_for_enterprise	>= 16.0.1 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	microsoft_office_2019	>= 19.0.0 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	microsoft_office_ltsc_2021	>= 16.0.1 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	microsoft_outlook_2016	>= 16.0.0.0 < 16.0.5413.1000	16.0.5413.1000
microsoft	office	—	—
microsoft	office_long_term_servicing_channel	—	—
microsoft	outlook	—	—
msrc	microsoft_365_apps_for_enterprise_for_32-bit_systems	—	—
msrc	microsoft_365_apps_for_enterprise_for_64-bit_systems	—	—
msrc	microsoft_office_2019_for_32-bit_editions	—	—
msrc	microsoft_office_2019_for_64-bit_editions	—	—
msrc	microsoft_office_ltsc_2021_for_32-bit_editions	—	—
msrc	microsoft_office_ltsc_2021_for_64-bit_editions	—	—
msrc	microsoft_outlook_2016	—	—
tianocore	edk2	>= 0 < 0~20191122.bd85bf54-2ubuntu3.5	0~20191122.bd85bf54-2ubuntu3.5
tianocore	edk2	>= 0 < 2022.02-3ubuntu0.22.04.2	2022.02-3ubuntu0.22.04.2

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

osv7.8HIGH