Outlook
by Microsoft
Take action — actively targeted
Outlook is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
52.8%
Confirmed actively exploited (CISA)
6.9%
Public exploit code available
0.0%
Based on 72 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2015-1641 | 7.8 | 93.6% | Yes |
| CVE-2023-23397 | 9.8 | 93.4% | Yes |
| CVE-2017-11774 | 7.8 | 84.6% | Yes |
| CVE-2007-0671 | 8.8 | 66.8% | Yes |
| CVE-2020-16947 | 7.5 | 45.4% | — |
| CVE-2018-0791 | 7.8 | 35.6% | — |
| CVE-2017-8506 | 7.8 | 33.9% | — |
| CVE-2020-0760 | 8.8 | 33.5% | — |
| CVE-2003-1048 | 7.8 | 33.2% | — |
| CVE-2018-8576 | 7.8 | 32.8% | — |
| CVE-2018-8524 | 7.8 | 32.8% | — |
| CVE-2018-8522 | 7.8 | 32.6% | — |
| CVE-2018-8582 | 8.8 | 32.1% | — |
| CVE-2018-0852 | 8.8 | 30.5% | — |
| CVE-2018-0851 | 8.8 | 30.5% | — |
| CVE-2020-1493 | 5.5 | 30.3% | — |
| CVE-2019-0560 | 5.5 | 26.9% | — |
| CVE-2020-1349 | 7.8 | 26.0% | — |
| CVE-2019-0559 | 6.5 | 25.8% | — |
| CVE-2016-3278 | 7.8 | 24.4% | — |
54
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
4/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.