A Security Update has been released for Outlook 2013. It resolves the following vulnerability;
- CVE-2023-36893: Microsoft Outlook Spoofing Vulnerability
- This vulnerability is currently not publicly disclosed nor exploited.
- Exploitation of the vulnerability requires that a user with an affected version of Outlook opens a malicious meeting or appointment invite from the attacker.
- The Preview Pane is not an attack vector.
- The Exploitability Assessment is rated: Exploitation Less Likely.
View: Download information for KB5002449
Note: This update can be installed via Microsoft Update or the Update Now button when you are using Office 2013 Click-To-Run and updates Outlook to version 15.0.5579.1000.
