CVE-2023-23397

Description from NVD

Microsoft Outlook Elevation of Privilege Vulnerability

Information Acquisition Date:2023-03-26T13:30Z
CVSS 2.0: 0.0 None CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NVD References

 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23397
     source:MISC
     tags:Patch    Vendor Advisory    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Android(6 tweets) Apple(1 tweets) Cisco(4 tweets) Exchange(42 tweets) VPN(2 tweets) Windows(107 tweets) Wordpress(1 tweets) iOS(21 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://cvetrends.com50
https://msrc.microsoft.com/update-guide/releaseNote/2023-Mar49
http://cyberiqs.com/latestnews39
https://medium.com20
https://lists.astaro.com/ASGV9-IPS-rules.html#018
https://www.mdsec.co.uk/2023/03/exploiting-cve-2023-23397-m...17
https://blog.scrt.ch/2023/03/14/producing-a-poc-for-cve-202...15
https://microsoft.github.io/CSS-Exchange/Security/CVE-2023-...14
https://www.bleepingcomputer.com/news/microsoft/microsoft-f...11
https://github.com/microsoft/CSS-Exchange/blob/a4c096e8b6e6...10
https://www.trendmicro.com/en_us/research/23/c/patch-cve-20...10
https://www.cisa.gov/known-exploited-vulnerabilities-catalog9
https://practical365.com/cve-2023-23397-ntlm-vulnerability9
https://research.trendmicro.com/cve2023233979
https://www.helpnetsecurity.com/2023/03/14/cve-2023-23397-c...9
https://blog.talosintelligence.com/outlook-privilege-escala...8
https://go.dhs.gov/Z3Q7
https://www.trustedsec.com/blog/critical-outlook-vulnerabil...7
https://thestack.technology/critical-microsoft-outlook-vuln...7
https://www.anoopcnair.com/zero-day-vulnerability-for-outlo...6
https://www.huntress.com/blog/everything-we-know-about-cve-...5
https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-0025
https://www.deepinstinct.com/blog/cve-2023-23397-exploitati...5
https://bit.ly/42hv9U24
https://www.securityweek.com/microsoft-pins-outlook-zero-da...4
https://cert.pl/posts/2023/03/outlook-cve-2023-233973
https://twitter.com/CISACyber/status/16357146083788554253
https://www.tenable.com/blog/microsofts-march-2023-patch-tu...3
https://blog.ehcgroup.io/2023/03/17/18/05/31/14889/microsof...3
https://blog.segu-info.com.ar/2023/03/microsoft-parchea-zer...3
https://securityboulevard.com/2023/03/detecting-cve-2023-23...3
https://packetstormsecurity.com/files/1713763

▼ Show Information from Twitter(1203)


List of frequently cited URLs

URLNum of Times Referred to
cvetrends.com50
msrc.microsoft.com49
cyberiqs.com39
medium.com20
lists.astaro.com18
www.mdsec.co.uk17
blog.scrt.ch15
microsoft.github.io14
www.bleepingcomputer.com11
github.com10
www.trendmicro.com10
www.cisa.gov9
practical365.com9
research.trendmicro.com9
www.helpnetsecurity.com9
blog.talosintelligence.com8
go.dhs.gov7
www.trustedsec.com7
thestack.technology7
www.anoopcnair.com6
www.huntress.com5
www.cert.ssi.gouv.fr5
www.deepinstinct.com5
bit.ly4
www.securityweek.com4
cert.pl3
twitter.com3
www.tenable.com3
blog.ehcgroup.io3
blog.segu-info.com.ar3
securityboulevard.com3
packetstormsecurity.com3

▼ Show Information from Twitter(1203)


GitHub Search Results: Up to 10
NameURL
api0cradle/CVE-2023-23397-POC-Powershell https://github.com/api0cradle/CVE-2023-23397-POC-Powershell
sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY
Trackflaw/CVE-2023-23397 https://github.com/Trackflaw/CVE-2023-23397
ka7ana/CVE-2023-23397 https://github.com/ka7ana/CVE-2023-23397
grn-bogo/CVE-2023-23397 https://github.com/grn-bogo/CVE-2023-23397
BillSkiCO/CVE-2023-23397_EXPLOIT https://github.com/BillSkiCO/CVE-2023-23397_EXPLOIT
alicangnll/CVE-2023-23397 https://github.com/alicangnll/CVE-2023-23397
BronzeBee/cve-2023-23397 https://github.com/BronzeBee/cve-2023-23397
ahmedkhlief/CVE-2023-23397-POC https://github.com/ahmedkhlief/CVE-2023-23397-POC
ahmedkhlief/CVE-2023-23397-POC-Using-Interop-Outlook https://github.com/ahmedkhlief/CVE-2023-23397-POC-Using-Interop-Outlook

GitHub Search Results: Up to 10
NameURL
api0cradle/CVE-2023-23397-POC-Powershell github.com
sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY github.com
Trackflaw/CVE-2023-23397 github.com
ka7ana/CVE-2023-23397 github.com
grn-bogo/CVE-2023-23397 github.com
BillSkiCO/CVE-2023-23397_EXPLOIT github.com
alicangnll/CVE-2023-23397 github.com
BronzeBee/cve-2023-23397 github.com
ahmedkhlief/CVE-2023-23397-POC github.com
ahmedkhlief/CVE-2023-23397-POC-Using-Interop-Outlook github.com

2023/03/25 Score : 129
Added Har-sia Database : 2023/03/15
Last Modified : 2023/03/25
Highest Scored Date : 2023/03/16
Highest Score : 313