ID CVE-2019-0559
Description An information disclosure vulnerability exists when Microsoft Outlook improperly handles certain types of messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook.
CVSS
  • Score: 4.3
  • Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
  • Availability: not affected
  • Confidentiality: PARTIAL
  • Integrity: not affected
CWE-ID CWE-200
Last Modified Jan. 12, 2019
Available Solutions No solutions were found

CPE-ID

Application Name/CPE-IDVendorProductVersionList of Vulnerabilities
Microsoft Office 2019 microsoft office 2019 40 Vulnerabilties for Microsoft Office 2019
Microsoft Office_365_proplus microsoft office 365 proplus 43 Vulnerabilties for Microsoft Office_365_proplus
Microsoft Outlook 2010 sp2 microsoft outlook 2010 sp2 20 Vulnerabilties for Microsoft Outlook 2010 sp2
Microsoft Outlook 2013 sp1 microsoft outlook 2013 sp1 21 Vulnerabilties for Microsoft Outlook 2013 sp1
Microsoft Outlook 2013 sp1 rt microsoft outlook 2013 sp1 rt 8 Vulnerabilties for Microsoft Outlook 2013 sp1 rt
Microsoft Outlook 2016 microsoft outlook 2016 23 Vulnerabilties for Microsoft Outlook 2016
Similar vulnerabilities

Pre-Condition

<set operator="and">
  <set operator="or">
      <prop key="application" value="cpe:/a:microsoft:office:2019"/>
      <prop key="application" value="cpe:/a:microsoft:office_365_proplus:-"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2010:sp2"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1:~~rt~~~"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2016"/>
  </set>
    <prop key="program_influence" value="input"/>
    <prop key="range" value="remote"/>
</set>

								

Post-Condition

<set operator="and">
  <set operator="or">
      <prop key="application" value="cpe:/a:microsoft:office:2019"/>
      <prop key="application" value="cpe:/a:microsoft:office_365_proplus:-"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2010:sp2"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1:~~rt~~~"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2016"/>
  </set>
    <prop key="program_influence" value="input"/>
    <prop key="data" value="any"/>
    <prop key="data_influence" value="read"/>
    <prop key="range" value="remote"/>
</set>