Every CVE whose affected-product data names Microsoft Outlook, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (120)
CVE-2001-0538 — CVSS 10.0 (critical): Microsoft Outlook View ActiveX Control in Microsoft Outlook 2002 and earlier allows remote attackers to execute arbitrary commands via a…
CVE-2007-0033 — CVSS 9.3 (critical): Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to execute arbitrary code via a malformed VEVENT record in an .iCal…
CVE-2007-0034 — CVSS 9.3 (critical): Buffer overflow in the Advanced Search (Finder.exe) feature of Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers…
CVE-2010-0266 — CVSS 9.3 (critical): Microsoft Office Outlook 2002 SP3, 2003 SP3, and 2007 SP1 and SP2 does not properly verify e-mail attachments with a PR_ATTACH_METHOD…
CVE-2010-2728 — CVSS 9.3 (critical): Heap-based buffer overflow in Microsoft Outlook 2002 SP3, 2003 SP3, and 2007 SP2, when Online Mode for an Exchange Server is enabled…
CVE-2013-3870 — CVSS 9.3 (critical): Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to execute arbitrary code by including…
CVE-2006-3877 — CVSS 9.3 (critical): Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac…
CVE-2006-4868 — CVSS 9.3 (critical): Stack-based buffer overflow in the Vector Graphics Rendering engine (vgx.dll), as used in Microsoft Outlook and Internet Explorer 6.0 on…
CVE-2004-0200 — CVSS 9.3 (critical): Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows…
CVE-2018-8582 — CVSS 8.8 (high): A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft…
CVE-2007-4040 — CVSS 8.8 (high): Argument injection vulnerability involving Microsoft Outlook and Outlook Express, when certain URIs are registered, allows remote attackers…
CVE-2020-0760 — CVSS 8.8 (high): A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote…
CVE-2003-1378 — CVSS 8.8 (high): Microsoft Outlook Express 6.0 and Outlook 2000, with the security zone set to Internet Zone, allows remote attackers to execute arbitrary…
CVE-2018-0852 — CVSS 8.8 (high): Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1 and RT SP1, Microsoft Outlook 2016, and Microsoft Office…
CVE-2018-0851 — CVSS 8.8 (high): Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office…
CVE-2018-8576 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka…
CVE-2003-1048 — CVSS 7.8 (high): Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service…
CVE-2017-8507 — CVSS 7.8 (high): A remote code execution vulnerability exists in the way Microsoft Office software parses specially crafted email messages, aka "Microsoft…
CVE-2016-3278 — CVSS 7.8 (high): Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office…
CVE-2017-8506 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office…
CVE-2018-8524 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka…
CVE-2018-8522 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka…
CVE-2017-0106 — CVSS 7.8 (high): Microsoft Excel 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to…
CVE-2018-0791 — CVSS 7.8 (high): Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, and Microsoft Outlook 2016 allow a remote code execution…
CVE-2020-1349 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka…
CVE-2017-8663 — CVSS 7.8 (high): Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office…
CVE-2017-8571 — CVSS 7.8 (high): Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office…
CVE-2019-1200 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory. An attacker…
CVE-2000-0160 — CVSS 7.6 (high): The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components…
CVE-2020-16947 — CVSS 7.5 (high): <p>A remote code execution vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory…
CVE-2000-0419 — CVSS 7.5 (high): The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via…
CVE-2000-0621 — CVSS 7.5 (high): Microsoft Outlook 98 and 2000, and Outlook Express 4.0x and 5.0x, allow remote attackers to read files on the client's system via a…
CVE-2001-0145 — CVSS 7.5 (high): Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a…
CVE-2001-1088 — CVSS 7.5 (high): Microsoft Outlook 8.5 and earlier, and Outlook Express 5 and earlier, with the "Automatically put people I reply to in my address book"…
CVE-2002-1056 — CVSS 7.5 (high): Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that are used while…
CVE-2002-2101 — CVSS 7.5 (high): Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or…
CVE-2004-0121 — CVSS 7.5 (high): Argument injection vulnerability in Microsoft Outlook 2002 does not sufficiently filter parameters of mailto: URLs when using them as…
CVE-2004-0204 — CVSS 7.5 (high): Directory traversal vulnerability in the web viewers for Business Objects Crystal Reports 9 and 10, and Crystal Enterprise 9 or 10, as used…
CVE-2006-0002 — CVSS 7.5 (high): Unspecified vulnerability in Microsoft Outlook 2000 through 2003, Exchange 5.0 Server SP2 and 5.5 SP4, Exchange 2000 SP3, and Office allows…
CVE-2008-3068 — CVSS 7.5 (high): Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation…
CVE-2017-11776 — CVSS 7.5 (high): Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook 2016 discloses user email content, aka…
CVE-2025-29805 — CVSS 7.5 (high): Exposure of sensitive information to an unauthorized actor in Outlook for Android allows an unauthorized attacker to disclose information…
CVE-2026-21260 — CVSS 7.5 (high): Exposure of sensitive information to an unauthorized actor in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing…
CVE-2026-42893 — CVSS 7.4 (high): Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to…
CVE-2024-42220 — CVSS 7.1 (high): A library injection vulnerability exists in Microsoft Outlook 16.83.3 for macOS. A specially crafted library can leverage Outlook's access…
CVE-2018-8244 — CVSS 6.5 (medium): An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly, aka "Microsoft Outlook…
CVE-2017-8545 — CVSS 6.5 (medium): A spoofing vulnerability exists in when Microsoft Outlook for Mac does not sanitize html properly, aka "Microsoft Outlook for Mac Spoofing…
CVE-2016-3366 — CVSS 6.5 (medium): Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, Outlook 2016, and Outlook 2016 for Mac do not properly…
CVE-2018-0850 — CVSS 6.5 (medium): Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, Microsoft Outlook 2016, and Microsoft Office 2016 Click-to-Run…
CVE-2019-0559 — CVSS 6.5 (medium): An information disclosure vulnerability exists when Microsoft Outlook improperly handles certain types of messages, aka "Microsoft Outlook…
CVE-2020-0696 — CVSS 6.5 (medium): A security feature bypass vulnerability exists in Microsoft Outlook software when it improperly handles the parsing of URI formats, aka…
CVE-2019-1084 — CVSS 6.5 (medium): An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable…
CVE-2017-0207 — CVSS 6.5 (medium): Microsoft Outlook for Mac 2011 allows remote attackers to spoof web content via a crafted email with specific HTML tags, aka "Microsoft…
CVE-2017-17688 — CVSS 5.9 (medium): The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext…
CVE-2017-17689 — CVSS 5.9 (medium): The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext…
CVE-2017-8572 — CVSS 5.5 (medium): Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office…
CVE-2017-8508 — CVSS 5.5 (medium): A security feature bypass vulnerability exists in Microsoft Office software when it improperly handles the parsing of file formats, aka…
CVE-2019-0560 — CVSS 5.5 (medium): An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office…
CVE-2020-1493 — CVSS 5.5 (medium): An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users…
CVE-2017-0204 — CVSS 5.5 (medium): Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1, and Microsoft Outlook 2016 allow remote attackers to…
CVE-2019-1218 — CVSS 5.4 (medium): A spoofing vulnerability exists in the way Microsoft Outlook iOS software parses specifically crafted email messages. An authenticated…
CVE-2019-1105 — CVSS 5.4 (medium): A spoofing vulnerability exists in the way Microsoft Outlook for Android software parses specifically crafted email messages. An…
CVE-2000-0329 — CVSS 5.1 (medium): A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an…
CVE-2002-0481 — CVSS 5.1 (medium): An interaction between Windows Media Player (WMP) and Outlook 2002 allows remote attackers to bypass Outlook security settings and execute…
CVE-2020-1483 — CVSS 5.0 (medium): A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker…
CVE-2000-0756 — CVSS 5.0 (medium): Microsoft Outlook 2000 does not properly process long or malformed fields in vCard (.vcf) files, which allows attackers to cause a denial…
CVE-2005-1052 — CVSS 5.0 (medium): Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail…
CVE-2013-3905 — CVSS 5.0 (medium): Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata contained in S/MIME certificates, which…
CVE-2006-2055 — CVSS 5.0 (medium): Argument injection vulnerability in Microsoft Outlook 2003 SP1 allows user-assisted remote attackers to modify command line arguments to an…
CVE-2001-0322 — CVSS 5.0 (medium): MSHTML.DLL HTML parser in Internet Explorer 4.0, and other versions, allows remote attackers to cause a denial of service (application…
CVE-2006-6659 — CVSS 5.0 (medium): The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service…
CVE-2002-1255 — CVSS 5.0 (medium): Microsoft Outlook 2002 allows remote attackers to cause a denial of service (repeated failure) via an email message with a certain invalid…
CVE-2000-0753 — CVSS 5.0 (medium): The Microsoft Outlook mail client identifies the physical path of the sender's machine within a winmail.dat attachment to Rich Text Format…
CVE-2000-0567 — CVSS 5.0 (medium): Buffer overflow in Microsoft Outlook and Outlook Express allows remote attackers to execute arbitrary commands via a long Date field in an…
CVE-2000-0524 — CVSS 5.0 (medium): Microsoft Outlook and Outlook Express allow remote attackers to cause a denial of service by sending email messages with blank fields such…
CVE-2002-2100 — CVSS 5.0 (medium): Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message…
CVE-2000-0415 — CVSS 5.0 (medium): Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp…
CVE-2003-0007 — CVSS 5.0 (medium): Microsoft Outlook 2002 does not properly handle requests to encrypt email messages with V1 Exchange Server Security certificates, which…
CVE-2000-0216 — CVSS 5.0 (medium): Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which…
CVE-2004-0284 — CVSS 5.0 (medium): Microsoft Internet Explorer 6.0, Outlook 2002, and Outlook 2003 allow remote attackers to cause a denial of service (CPU consumption), if…
CVE-2004-0501 — CVSS 5.0 (medium): Outlook 2003 allows remote attackers to bypass intended access restrictions and cause Outlook to request a URL from a remote site via an…
CVE-2004-0502 — CVSS 5.0 (medium): Outlook 2003, when replying to an e-mail message, stores certain files in a predictable location for the "src" of an img tag of the…
CVE-2004-0503 — CVSS 5.0 (medium): Microsoft Outlook 2003 allows remote attackers to bypass the default zone restrictions and execute script within media files via a Rich…
CVE-2004-0526 — CVSS 5.0 (medium): Unknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL in the status bar via A HREF tags with…
CVE-2004-2482 — CVSS 5.0 (medium): Microsoft Outlook 2000 and 2003, when configured to use Microsoft Word 2000 or 2003 as the e-mail editor and when forwarding e-mail, does…
CVE-1999-1164 — CVSS 5.0 (medium): Microsoft Outlook client allows remote attackers to cause a denial of service by sending multiple email messages with the same X-UIDL…
CVE-2020-16949 — CVSS 4.7 (medium): <p>A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An…
CVE-2019-1460 — CVSS 4.6 (medium): A spoofing vulnerability exists in the way Microsoft Outlook for Android software parses specifically crafted email messages, aka 'Outlook…
CVE-1999-0384 — CVSS 4.6 (medium): The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the…
CVE-2019-1204 — CVSS 4.3 (medium): An elevation of privilege vulnerability exists when Microsoft Outlook initiates processing of incoming messages without sufficient…
CVE-2006-1305 — CVSS 4.3 (medium): Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and…