Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. High-Severity Vulnerability Affecting Microsoft Outlook
Alerts

High-Severity Vulnerability Affecting Microsoft Outlook

11 July 2024

Microsoft has released security updates to address a high-severity vulnerability (CVE-2024-38021) in their Outlook applications.

Successful exploitation of the vulnerability could allow an unauthenticated attacker to gain unauthorised access and perform remote code execution.

The vulnerability affects the following products:

  • Microsoft Office 2016

  • Microsoft Office 2019

  • Microsoft Office LTSC 2021

  • Microsoft 365 Apps for Enterprise

Users and administrators of affected products are advised to update to the latest versions immediately.

More information is available here:

https://nvd.nist.gov/vuln/detail/CVE-2024-38021

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-38021

https://blog.morphisec.com/cve-2024-38021-microsoft-outlook-moniker-rce-vulnerability

https://www.infosecurity-magazine.com/news/microsoft-outlook-zero-click-rce/

Back to top