EUVD-2020-2189

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Security feature bypass vulnerability in Microsoft Outlook affects URI format parsing.

Reporter	Title	Published	Views	Family All 22
BDU FSTEC	The vulnerability of the Microsoft Outlook client and the Microsoft Office and Office 365 ProPlus software packages relates to a security feature that allows an attacker to bypass existing security restrictions. This feature enables the attacker to redirect users to malicious URIs and execute malicious code in conjunction with other vulnerabilities.	12 Mar 202000:00	–	bdu_fstec
CNVD	Microsoft Outlook Security Feature Bypass Vulnerability	17 Feb 202000:00	–	cnvd
CVE	CVE-2020-0696	11 Feb 202021:23	–	cve
Cvelist	CVE-2020-0696	11 Feb 202021:23	–	cvelist
Microsoft KB	Description of the security update for Outlook 2013: February 11, 2020	11 Feb 202008:00	–	mskb
Microsoft KB	Description of the security update for Outlook 2010: February 11, 2020	11 Feb 202008:00	–	mskb
Microsoft KB	Description of the security update for Outlook 2016: February 11, 2020	11 Feb 202008:00	–	mskb
Kaspersky	KLA11663 Multiple vulnerabilities in Microsoft Office	11 Feb 202000:00	–	kaspersky
Microsoft CVE	Microsoft Outlook Security Feature Bypass Vulnerability	11 Feb 202008:00	–	mscve
NVD	CVE-2020-0696	11 Feb 202022:15	–	nvd

[
  {
    "enisaIdVendor": [
      {
        "id": "e3e7c4dc-2761-38ff-a522-a6a145234d30",
        "vendor": {
          "name": "Microsoft"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0caedcb5-e2e4-34ed-9371-e6e2b36bfb99",
        "product": {
          "name": "Microsoft Office"
        },
        "product_version": "2019 for 32-bit editions"
      },
      {
        "id": "1625034d-e235-37ec-bd1a-bed89a013559",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2016 (64-bit edition)"
      },
      {
        "id": "1f8b669f-fbcf-3f41-8029-8c2d2d0f307f",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2010 Service Pack 2 (32-bit editions)"
      },
      {
        "id": "28f0995a-6fb6-3e06-ade9-90e6092c7863",
        "product": {
          "name": "Office 365 ProPlus"
        },
        "product_version": "64-bit Systems"
      },
      {
        "id": "4b66c2eb-936b-3faa-95b5-46c8d86d77f4",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2013 Service Pack 1 (64-bit editions)"
      },
      {
        "id": "598152cc-c70f-3a8e-b27d-b6ceb7ff6e1f",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2010 Service Pack 2 (64-bit editions)"
      },
      {
        "id": "9cbf649c-7868-3994-a70d-417c133416d2",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2013 Service Pack 1 (32-bit editions)"
      },
      {
        "id": "9f686570-1143-3a03-88ad-d5c1bb84c46f",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2013 RT Service Pack 1"
      },
      {
        "id": "b595482d-1eb3-3527-b245-938ebcf4dcce",
        "product": {
          "name": "Office 365 ProPlus"
        },
        "product_version": "32-bit Systems"
      },
      {
        "id": "d3ed7d43-01cf-3358-ac75-c33b03ab01dc",
        "product": {
          "name": "Microsoft Office"
        },
        "product_version": "2019 for 64-bit editions"
      },
      {
        "id": "e0c0d7d9-6b51-3f7e-ba10-933bc97e2506",
        "product": {
          "name": "Microsoft Outlook"
        },
        "product_version": "2016 (32-bit edition)"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0696
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.16.5

CVSS 24.3

EPSS0.03614