CVE-2023-23397 — Microsoft Office Outlook Privilege Escalation Vulnerability

2023-03-14 • CISA Known Exploited Vulnerability

[event] Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against another service to authenticate as the user.

> AFFECTED SOFTWARE

Field	Value
Vendor	Microsoft
Product	Office
CWE	CWE-294
CVE ID	CVE-2023-23397
Date Added	2023-03-14
Due Date	2023-04-04
Ransomware Campaign	Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2023-04-04

> REFERENCES

[1] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-23397,
[2] https://msrc.microsoft.com/blog/2023/03/microsoft-mitigates-outlook-elevation-of...
[3] https://nvd.nist.gov/vuln/detail/CVE-2023-23397