Critical Microsoft Outlook Vulnerability CVE-2024-21413 Exploited
/ 1 min read
📧🛡️ Critical Microsoft Outlook vulnerability CVE-2024-21413 poses severe risks. A newly discovered flaw in Microsoft Outlook, with a CVSS score of 9.8, is being actively exploited, allowing attackers to execute arbitrary code by simply having a user open a malicious email. This vulnerability affects multiple versions of Microsoft Office, including Office 2016, 2019, and Microsoft 365, and enables attackers to bypass security features like Protected View. Dubbed “Moniker Link,” the exploit manipulates how Outlook processes certain file links, potentially leading to severe consequences such as data theft and ransomware deployment. The Cybersecurity and Infrastructure Security Agency (CISA) has mandated U.S. federal agencies to patch their systems by February 27th, and users are urged to apply the official Microsoft patch immediately to mitigate risks.
