Vulnerability in Microsoft Office 2019
CVE-2019-1204
An elevation of privilege vulnerability exists when Microsoft Outlook initiates processing of incoming messages without sufficient validation of the formatting of the messages. An attacker who successfully exploited the vulnerability could…
EPSS: 0.086 (92.6th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Office 2019 — versions 19.0.0
- Microsoft Outlook 2010 Service Pack 2 — versions 13.0.0.0
- Microsoft Outlook 2013 Service Pack 1 — versions 15.0.0.0
- Microsoft Outlook 2016 — versions 16.0.0.0
- Microsoft Office 365 Proplus — versions 16.0.0
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1204 (x_refsource_MISC)