Microsoft Outlook 2013 Service Pack 1 vulnerabilities

15 known vulnerabilities affecting microsoft/microsoft_outlook_2013_service_pack_1.

Total CVEs

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL1HIGH10MEDIUM4

Vulnerabilities

Page 1 of 1

CVE-2023-36893MEDIUMCVSS 6.5≥ 15.0.0.0, < 15.0.5579.10002023-08-08

CVE-2023-36893 [MEDIUM] CWE-20 Microsoft Outlook Spoofing Vulnerability Microsoft Outlook Spoofing Vulnerability Microsoft Outlook Spoofing Vulnerability

cvelistv5

CVE-2023-35311HIGHCVSS 7.5KEV≥ 15.0.0.0, < 15.0.5571.10002023-07-11

CVE-2023-35311 [HIGH] CWE-367 CVE-2023-35311: Microsoft Outlook Security Feature Bypass Vulnerability Microsoft Outlook Security Feature Bypass Vulnerability

cvelistv5nvd

CVE-2023-33151MEDIUMCVSS 6.5≥ 15.0.0.0, < 15.0.5571.10002023-07-11

CVE-2023-33151 [MEDIUM] Microsoft Outlook Spoofing Vulnerability Microsoft Outlook Spoofing Vulnerability Microsoft Outlook Spoofing Vulnerability

cvelistv5

CVE-2023-33131HIGHCVSS 8.8PoC≥ 15.0.0.0, < 15.0.5563.10002023-06-14

CVE-2023-33131 [HIGH] CWE-94 CVE-2023-33131: Microsoft Outlook Remote Code Execution Vulnerability Microsoft Outlook Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2022-35742HIGHCVSS 7.5≥ 15.0.0.0, < 15.0.5475.10012023-06-01

CVE-2022-35742 [HIGH] Microsoft Outlook Denial of Service Vulnerability Microsoft Outlook Denial of Service Vulnerability Microsoft Outlook Denial of Service Vulnerability

cvelistv5

CVE-2023-23397CRITICALCVSS 9.8KEV≥ 15.0.0.0, < 15.0.5537.10002023-03-14

CVE-2023-23397 [CRITICAL] CWE-20 CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability Microsoft Outlook Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2021-31949HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5475.10002021-06-08

CVE-2021-31949 [HIGH] CWE-94 CVE-2021-31949: Microsoft Outlook Remote Code Execution Vulnerability Microsoft Outlook Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2021-31941HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5475.10002021-06-08

CVE-2021-31941 [HIGH] CVE-2021-31941: Microsoft Office Graphics Remote Code Execution Vulnerability Microsoft Office Graphics Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2021-28452HIGHCVSS 7.1≥ 15.0.0.0, < publication2021-04-13

CVE-2021-28452 [HIGH] Microsoft Outlook Memory Corruption Vulnerability Microsoft Outlook Memory Corruption Vulnerability Microsoft Outlook Memory Corruption Vulnerability

cvelistv5

CVE-2020-17119HIGHCVSS 7.5≥ 15.0.0.0, < publication2020-12-10

CVE-2020-17119 [MEDIUM] CVE-2020-17119: Microsoft Outlook Information Disclosure Vulnerability Microsoft Outlook Information Disclosure Vulnerability

cvelistv5nvd

CVE-2020-16949HIGHCVSS 7.5≥ 15.0.0.0, < publication2020-10-16

CVE-2020-16949 [MEDIUM] CWE-401 CVE-2020-16949: <p>A denial of service vulnerability exists in Microsoft Outlook software when the software fails to A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system. Exploitation of the vulnerability requires that a specially crafted email be sent to a vulnerable Outloo

cvelistv5nvd

CVE-2020-1483HIGHCVSS 8.8≥ 15.0.0.0, < publication2020-08-17

CVE-2020-1483 [MEDIUM] CWE-787 CVE-2020-1483: A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properl A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the aff

cvelistv5nvd

CVE-2020-1493MEDIUMCVSS 5.5≥ 15.0.0.0, < publication2020-08-17

CVE-2020-1493 [MEDIUM] CWE-922 CVE-2020-1493: An information disclosure vulnerability exists when attaching files to Outlook messages. This vulner An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users to share attached files such that they are accessible by anonymous users where they should be restricted to specific users. To exploit this vulnerability, an attacker would have to attach a file as a link to an emai

cvelistv5nvd

CVE-2019-1200HIGHCVSS 7.8≥ 15.0.0.0, < publication2019-08-14

CVE-2019-1200 [HIGH] CVE-2019-1200: A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user wi

cvelistv5nvd

CVE-2019-1204MEDIUMCVSS 4.3≥ 15.0.0.0, < publication2019-08-14

CVE-2019-1204 [MEDIUM] CWE-20 CVE-2019-1204: An elevation of privilege vulnerability exists when Microsoft Outlook initiates processing of incomi An elevation of privilege vulnerability exists when Microsoft Outlook initiates processing of incoming messages without sufficient validation of the formatting of the messages. An attacker who successfully exploited the vulnerability could attempt to force Outlook to load a local or remote message store (over SMB). To exploit the vulnerability, the att

cvelistv5nvd