Microsoft Teams for iOS Spoofing Vulnerability
CVE-2024-38197

6.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Teams For iOS
Vendor: CVE Published:; 13 August 2024

Summary

A spoofing vulnerability has been identified in Microsoft Teams for iOS, posing a significant risk to user identity and information security. This vulnerability allows an attacker to impersonate legitimate users within the application, potentially leading to unauthorized access to sensitive data and user trust issues. Users of Microsoft Teams for iOS should be aware of the implications of this vulnerability and take necessary precautions to safeguard their accounts and data, as the impact of successful exploitation can lead to serious security breaches.

Affected Version(s)

Microsoft Teams for iOS Unknown 2.0.0 < 7.13.0

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 13, 2024
Vulnerability Reserved
Jun 11, 2024

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed