CVE-2024-43604

Summary

CVE-2024-43604 is a newly disclosed vulnerability affecting Outlook for Android. This elevation of privilege issue grants attackers the ability to escalate their privileges within the app, potentially gaining unauthorized access to sensitive information. Successful exploitation requires the attacker to be able to manipulate a specially crafted email message. Users are advised to install app updates as soon as they become available to mitigate this risk. Microsoft has acknowledged the issue and is working on a fix. Until then, users should practice caution when handling emails, especially those from untrusted sources.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.