First published: Wed Dec 18 2024(Updated: )
A library injection vulnerability exists in Microsoft Outlook 16.83.3 for macOS. A specially crafted library can leverage Outlook's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
Credit: talos-cna@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Outlook |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-42220 is considered a high-severity vulnerability due to its potential for permission bypass.
To mitigate CVE-2024-42220, ensure that Microsoft Outlook for macOS is updated to the latest version provided by Microsoft.
CVE-2024-42220 specifically affects Microsoft Outlook 16.83.3 for macOS.
CVE-2024-42220 is classified as a library injection vulnerability.
Exploiting CVE-2024-42220 could allow a malicious application to gain unauthorized access to the privileges of Microsoft Outlook.