We want to inform you of a critical security issue affecting Microsoft Outlook/365 applications.
This vulnerability, known as CVE-2023-23397, is being exploited by cybercriminals and requires immediate attention. In simple terms, attackers can gain unauthorized access to your systems and steal sensitive information just by sending a specially crafted email.
The concerning part is that you don’t even need to open the email for the attack to take place. It happens automatically when the email is processed by your Outlook application. This affects nearly every version of Microsoft’s incredibly popular email client, Outlook. different versions of Microsoft 365 Apps for Enterprise, as well as Office 2013, 2016, and 2019.
To update Outlook for Windows: Open Microsoft Outlook and click File > Office Account > Update Options > Update Now