Microsoft fixes Outlook zero-day used by Russian hackers since April 2022
Microsoft fixes Outlook zero-day used by Russian hackers since April 2022
15 March 2023
The vulnerability (CVE-2023-23397) was reported by CERT-UA, and it's a critical Outlook elevation of privilege security flaw exploitable without user interaction in low-complexity attacks.