| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulnerability | Microsoft Outlook | Critical | 19-02-2024 |
Technical Information
An attacker could craft a malicious link that bypasses the Protected View Protocol, which leads to the leaking of local NTLM credential information and remote code execution (RCE). An attacker who successfully exploited this vulnerability could gain high privileges, which include read, write, and delete functionality.
Patch release date: Feb 13, 2024
Further information on this vulnerability is available at CVE-2024-21413
Affected Software
Microsoft Office 2019 for 32-bit editions,Microsoft Office 2019 for 64-bit editions,
Microsoft 365 Apps for Enterprise for 32-bit Systems,
Microsoft 365 Apps for Enterprise for 64-bit Systems,
Microsoft Office LTSC 2021 for 64-bit editions,
Microsoft Office LTSC 2021 for 32-bit editions,
Microsoft Office 2016 (32-bit edition),
Microsoft Office 2016 (64-bit edition)