Medium severity6.5NVD Advisory· Published Dec 12, 2023· Updated Jun 17, 2026
CVE-2023-35636
CVE-2023-35636
Description
Microsoft Outlook Information Disclosure Vulnerability
Affected products
5- Microsoft/Microsoft 365 Apps for Enterprisev5Range: 16.0.1
16.0.0+ 1 more
- (no CPE)range: 16.0.0
- (no CPE)range: 19.0.0
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35636nvdPatchVendor Advisory
News mentions
1- Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 HashesThe Hacker News · Jun 3, 2026