Microsoft Corporation Microsoft Outlook vulnerabilities
5 known vulnerabilities affecting microsoft_corporation/microsoft_outlook.
Total CVEs
5
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-0850MEDIUMCVSS 6.5vMicrosoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, Microsoft Outlook 2016, and Microsoft Office 2016 Click-to-Run2018-02-15
CVE-2018-0850 [MEDIUM] CVE-2018-0850: Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, Microsoft Outlook 2016, and
Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, Microsoft Outlook 2016, and Microsoft Office 2016 Click-to-Run allow an elevation of privilege vulnerability due to how the format of incoming message is validated, aka "Microsoft Outlook Elevation of Privilege Vulnerability".
cvelistv5nvd
CVE-2018-0793HIGHCVSS 7.8vMicrosoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 20132018-01-10
CVE-2018-0793 [HIGH] CVE-2018-0793: Microsoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 2013 allow a remote code execution vulnerability due to the way email messages ar
Microsoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 2013 allow a remote code execution vulnerability due to the way email messages are parsed, aka "Microsoft Outlook Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0791.
cvelistv5
CVE-2018-0791HIGHCVSS 7.8vMicrosoft Outlook 2007, Microsoft Outlook 2010 and Microsoft Outlook 20132018-01-10
CVE-2018-0791 [HIGH] CVE-2018-0791: Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, and Microsoft Outlook 2016 a
Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, and Microsoft Outlook 2016 allow a remote code execution vulnerability due to the way email messages are parsed, aka "Microsoft Outlook Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0793.
cvelistv5nvd
CVE-2017-11774HIGHCVSS 7.8KEVvMicrosoft Outlook 2010 SP2vOutlook 2013 SP1 and RT SP1+1 more2017-10-13
CVE-2017-11774 [HIGH] CWE-119 CVE-2017-11774: Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execu
Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outlook Security Feature Bypass Vulnerability."
cvelistv5nvd
CVE-2017-11776HIGHCVSS 7.5vMicrosoft Outlook 20162017-10-13
CVE-2017-11776 [HIGH] CWE-200 CVE-2017-11776: Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook
Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook 2016 discloses user email content, aka "Microsoft Outlook Information Disclosure Vulnerability."
cvelistv5nvd