KLA65129 Multiple vulnerabilities in Microsoft Apps

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Skype for Consumer can be exploited remotely to execute arbitrary code.
2. An elevation of privilege vulnerability in Microsoft Intune Linux Agent can be exploited remotely to gain privileges.
3. An information disclosure vulnerability in Outlook for Android can be exploited remotely to obtain sensitive information.
4. An elevation of privilege vulnerability in Microsoft Authenticator can be exploited remotely to gain privileges.

Original advisories

CVE-2024-21411

CVE-2024-26201

CVE-2024-26204

CVE-2024-21390

Exploitation

Public exploits exist for this vulnerability.

Related products

Microsoft-Outlook

Skype-for-Windows

CVE list

CVE-2024-21411 critical

CVE-2024-26201 high

CVE-2024-26204 critical

CVE-2024-21390 high

KB list

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

• Microsoft Outlook for AndroidIntune Company Portal for AndroidMicrosoft AuthenticatorSkype for Consumer