Home

CVE-2020-1229

Description

A security feature bypass vulnerability exists in Microsoft Outlook when Office fails to enforce security settings configured on a system, aka Microsoft Outlook Security Feature Bypass Vulnerability.

Risk Information

Base Score
4.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
6.887

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2016 (KB4484396) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2016 (KB4484396) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2010 (KB4484373) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2010 (KB4484373) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2010 (KB4484378) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2010 (KB4484378) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2016 (KB4484342) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2016 (KB4484342) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2010 (KB4484380) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2010 (KB4484380) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2013 (KB4484351) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Office 2013 (KB4484351) 64-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2013 (KB4484361) 32-Bit EditionWindows
Microsoft Outlook Security Feature Bypass Vulnerability for Microsoft Word 2013 (KB4484361) 64-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 1908 of version(11929.20838)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 1908 of version(11929.20838)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 1908 of version(11929.20838)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 1908 of version(11929.20838)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 1908 (Build 11929.20838)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2002 of version(12527.20720)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2002 of version(12527.20720)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Targeted Channel Version 2002 (Build 12527.20720)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Monthly Channel for x64 2005 of version(12827.20336)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Monthly Channel for x86 2005 of version(12827.20336)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Monthly Channel for x64 2005 of version(12827.20336)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Monthly Channel for x86 2005 of version(12827.20336)Windows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Monthly Channel Version 2005 (Build 12827.20336)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-29122Security Update for Microsoft Word 2016 (KB4484396) 32-Bit Edition
PATCH-29123Security Update for Microsoft Word 2016 (KB4484396) 64-Bit Edition
PATCH-29101Security Update for Microsoft Office 2010 (KB4484373) 32-Bit Edition
PATCH-29102Security Update for Microsoft Office 2010 (KB4484373) 64-Bit Edition
PATCH-29165Security Update for Microsoft Office 2010 (KB4484378) 32-Bit Edition
PATCH-29166Security Update for Microsoft Office 2010 (KB4484378) 64-Bit Edition
PATCH-29120Security Update for Microsoft Office 2016 (KB4484342) 32-Bit Edition
PATCH-29121Security Update for Microsoft Office 2016 (KB4484342) 64-Bit Edition
PATCH-29111Security Update for Microsoft Office 2013 (KB4484351) 32-Bit Edition
PATCH-29112Security Update for Microsoft Office 2013 (KB4484351) 64-Bit Edition
PATCH-29113Security Update for Microsoft Word 2013 (KB4484361) 32-Bit Edition
PATCH-29114Security Update for Microsoft Word 2013 (KB4484361) 64-Bit Edition
PATCH-29198Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 1908 of version(11929.20838)
PATCH-29200Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 1908 of version(11929.20838)
PATCH-29202Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 1908 of version(11929.20838)
PATCH-29204Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 1908 of version(11929.20838)
PATCH-29210Update for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 1908 (Build 11929.20838)
PATCH-29206Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2002 of version(12527.20720)
PATCH-29208Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2002 of version(12527.20720)
PATCH-29211Update for Microsoft 365 Apps for Enterprise Targeted Channel Version 2002 (Build 12527.20720)
PATCH-29190Update for Microsoft 365 Apps for Enterprise Monthly Channel for x64 2005 of version(12827.20336)
PATCH-29192Update for Microsoft 365 Apps for Enterprise Monthly Channel for x86 2005 of version(12827.20336)
PATCH-29194Update for Microsoft 365 Apps for Business Monthly Channel for x64 2005 of version(12827.20336)
PATCH-29196Update for Microsoft 365 Apps for Business Monthly Channel for x86 2005 of version(12827.20336)
PATCH-29209Update for Microsoft 365 Apps for Enterprise Monthly Channel Version 2005 (Build 12827.20336)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234