Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2024-38197: Microsoft Teams for iOS Spoofing Vulnerability

According to the CVSS metric, successful exploitation of this vulnerability could lead to some loss of confidentiality (C:L) and integrity (I:L) but does not impact availability (A:N)? What does that mean for this vulnerability?

The attacker is only able to modify the sender’s name of Teams message (I:L) and through social engineering, attempt to trick the recipient into disclosing information (C:L). The availability of the product cannot be affected (A:N).

Microsoft Security Response Center
#vulnerability#ios#microsoft#Microsoft Teams#Security Vulnerability

Microsoft Security Response Center: Latest News

CVE-2024-12695: Chromium: CVE-2024-12695 Out of bounds write in V8