CVE-2017-8572

CVE Database · CVE-2017-8572

CVE-2017-8572

· N/AModified

CVSS v3.1

N/A

EPSS

12.59%

Published

Aug 1, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows an information disclosure vulnerability due to the way that it discloses the contents of its memory, aka "Microsoft Office Outlook Information Disclosure Vulnerability".

Weaknesses (CWE)

CWE-200

Affected Products (4)

microsoft · outlookvulnerable

References (6)

http://www.securityfocus.com/bid/99453

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039010

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8572

PatchVendor Advisory

http://www.securityfocus.com/bid/99453

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039010

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8572

KEV Catalog EPSS Scores Vendors All CVEs