A Security Update has been released for Outlook 2013. It resolves the following vulnerability;
- CVE-2020-17119: Microsoft Outlook Information Disclosure Vulnerability
The type of information that could be disclosed if an attacker successfully exploited this vulnerability is uninitialized memory.
Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited.
The Preview Pane is not an attack vector.