Is CVE-2020-1349 known to be exploited?

8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft 365 Apps For Enterprise 32-bit Systems

CVE-2020-1349

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka 'Microsoft Outlook Remote Code Execution Vulnerability'.

EPSS: 0.260 (96.4th percentile) — read the EPSS interpretation.

Affected products

Microsoft 365 Apps For Enterprise 32-bit Systems — versions unspecified
Microsoft 365 Apps For Enterprise 64-bit Systems — versions unspecified
Microsoft Office — versions 2019 for 32-bit editions, 2019 for 64-bit editions
Microsoft Outlook — versions 2016 (32-bit edition), 2016 (64-bit edition), 2013 Service Pack 1 (32-bit editions)

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2020-1349?: CVE-2020-1349 is a vulnerability in Microsoft 365 Apps For Enterprise 32-bit Systems. Published 2020-07-14.
Is CVE-2020-1349 known to be exploited?: 8 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.