Microsoft Outlook Android EOP Vulnerability CVE-2024-43604
CVE-2024-43604 Published on October 8, 2024
Outlook for Android Elevation of Privilege Vulnerability
Outlook for Android Elevation of Privilege Vulnerability
Weakness Type
Insufficient Granularity of Access Control
The product implements access controls via a policy or other feature with the intention to disable or restrict accesses (reads and/or writes) to assets in a system from untrusted agents. However, implemented access controls lack required granularity, which renders the control policy too broad because it allows accesses from unauthorized agents to the security-sensitive assets.
Products Associated with CVE-2024-43604
Want to know whenever a new CVE is published for Microsoft Outlook? stack.watch will email you.
Affected Versions
Microsoft Outlook for Android:- Version 1.0 and below 4.2435.2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.