CVE-2023-23397 allows Russian APT28 to steal NTLMv2 hashes via a specially crafted Outlook calendar invite — requiring zero victim interaction. Patch immediately, block outbound SMB (port 445) at the perimeter, and audit incoming calendar items containing UNC paths using Microsoft's provided script.
Microsoft Outlook Elevation of Privilege Vulnerability allows attackers to steal NTLM hashes with zero user interaction via calendar invites.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →