Warning: Some posts on this platform may contain adult material intended for mature audiences only. Viewer discretion is advised. By clicking ‘Continue’, you confirm that you are 18 years or older and consent to viewing explicit content.
Heads up: Microsoft has updated its security advisory for the critical Outlook bug they patched on Tuesday, the one that can be exploited just by a malicious message being viewed in the preview pane. They're now saying it's under active attack.
This remote code execution vulnerability is assigned a CVSS3.1 (badness) score of 9.8.
EDIT: Someone just pointed out that MS has changed the advisory back to the way it was, saying it's NOT currently being exploited.
https://infosec.exchange/@simontsui/111931337056708824
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413
https://krebsonsecurity.com/2024/02/fat-patch-tuesday-february-2024-edition/#more-66378