Spoofing Vulnerability in Microsoft Outlook for Android
CVE-2019-1105

5.4MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Outlook For Android
Vendor: CVE Published:; 29 July 2019

Summary

A spoofing vulnerability exists in Microsoft Outlook for Android, related to the way the application processes specially crafted email messages. This could potentially allow attackers to impersonate other users or trick recipients into believing that an email originates from a legitimate source. Users of Outlook for Android are encouraged to apply updates and follow security best practices to mitigate any risks associated with this issue.

Affected Version(s)

Microsoft Outlook for Android = unspecified

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 29, 2019
Vulnerability Reserved
Nov 26, 2018