Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft outlook 2013 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-3278
Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote malicious users to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
Microsoft Outlook 2016
Microsoft Outlook 2013
Microsoft Outlook 2010
Microsoft Outlook Rt 2013
5.5
CVSSv3
CVE-2016-0028
Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative Update 12 and 2016 Gold and Cumulative Update 1 does not properly restrict loading of IMG elements, which makes it easier for remote malicious users to track users via a crafted H...
Microsoft Outlook Web Access
6.1
CVSSv3
CVE-2016-0032
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 PS1, 2013 Cumulative Update 10, 2013 Cumulative Update 11, and 2016 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Exchange Sp...
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
6.1
CVSSv3
CVE-2016-0030
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 PS1, 2013 Cumulative Update 10, and 2016 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Exchange Spoofing Vulnerability."
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
NA
CVE-2015-6172
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2016, Word 2013 RT SP1, and Office Compatibility Pack SP3 allow remote malicious users to execute arbitrary code via a crafted email message processed by Outlook, aka "Microsoft Office RCE Vulnerabi...
Microsoft Word 2010
Microsoft Word 2007
Microsoft Office 2010
Microsoft Word 2013
Microsoft Office Compatibility Pack
NA
CVE-2015-2505
Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 and SP1 allows remote malicious users to obtain sensitive stacktrace information via a crafted request, aka "Exchange Information Disclosure Vulnerability."
Microsoft Exchange Server 2013
NA
CVE-2015-2543
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 allows remote malicious users to inject arbitrary web script or HTML via a crafted e-mail message, aka "Exchange Spoofing Vulnerability."
Microsoft Exchange Server 2013
NA
CVE-2015-2544
Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative Update 8 and 9 and SP1 allows remote malicious users to inject arbitrary web script or HTML via a crafted e-mail message, aka "Exchange Spoofing Vulnerability.&q...
Microsoft Exchange Server 2013
NA
CVE-2015-1628
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote malicious users to inject arbitrary web script or HTML via a crafted X-OWA-Canary cookie in an AD.RecipientType.User action, aka "OWA...
Microsoft Exchange Server 2013
NA
CVE-2015-1630
Cross-site scripting (XSS) vulnerability in Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 7 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka "Audit Report Cross Site Scripting Vulnerability."
Microsoft Exchange Server 2013
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »