Description

CVE-2023-23397 - Microsoft Outlook Elevation of Privilege Vulnerability. 

"A critical security vulnerability has been identified in the Microsoft Outlook desktop client. This vulnerability allows attackers to access your network by simply emailing you. This is a 0-day vulnerability. This exploit is particularly dangerous because no user interaction is required to trigger the exploit. Once an infected email arrives in a Microsoft Outlook inbox, sensitive credential hashes can be obtained."

https://nvd.nist.gov/vuln/detail/CVE-2023-23397
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23397
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23397

EV, DA and CA Servers: 

Enterprise Vault requires Microsoft Outlook installed on the EV Servers performing Exchange, Journaling or Public Folder archiving.

Microsoft Outlook might also be required to be installed on Discovery or Accelerator Servers.

Client machines: 

Enterprise Vault Add-in is installed for Microsoft Outlook on client machines 

It is required / mandatory to install the Microsoft security update either on the EV, DA and CA Servers and on the Client machines. Upon installing the security patch any existing or newly infected items (archived or not) will not pose any security threat.

Customers affected are invited to contact MS support to gather additional details of such Microsoft Outlook vulnerability.