← ExploitWatch
HomeExploited Vulnerabilities

CVE-2017-11774 — Actively Exploited: Office (Microsoft)

Microsoft Office Outlook contains a security feature bypass vulnerability due to improperly handling objects in memory. Successful exploitation allows an attacker to execute commands.

CVE IDCVE-2017-11774
VendorMicrosoft
ProductOffice
Vulnerability nameMicrosoft Office Outlook Security Feature Bypass Vulnerability
Date added2021-11-03
Remediation due2022-05-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Office Outlook contains a security feature bypass vulnerability due to improperly handling objects in memory. Successful exploitation allows an attacker to execute commands.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →