8.8
CVE-2024-30103
- EPSS 3.45%
- Veröffentlicht 11.06.2024 17:15:59
- Zuletzt bearbeitet 19.05.2026 18:38:59
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook Remote Code Execution Vulnerability
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Office Long Term Servicing Channel Version2021 HwPlatformx64
Microsoft ≫ Office Long Term Servicing Channel Version2021 HwPlatformx86
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.45% | 0.875 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-184 Incomplete List of Disallowed Inputs
The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30103