Microsoft Outlook had a critical zero-click RCE vulnerability
Summary: A critical zero-click RCE vulnerability, CVE-2024-38021, was discovered in Microsoft Outlook, affecting most applications. Microsoft has patched the flaw, distinguishing trusted senders as zero-click and untrusted ones requiring one-click interaction. Morphisec urged Microsoft to reclassify the vulnerability as "Critical" due to higher risk. The flaw was reported on April 21, confirmed on April 26, and patched on July 9, 2024. Updating software and enhancing email security measures are crucial.
This is article metrics. Combined, they form a significance score, that indicates how important the news is on a scale from 0 to 10.
My algorithm scores 10,000 news articles daily, and creates a single significance-ordered list of news.
Read more about how I calculate significance, or see today's top ranked news on the main page:
See today's news rankings