CVE-2019-1218

Name of the Vulnerable Software and Affected Versions Microsoft Outlook iOS (affected versions not specified)

Description The issue exists due to insufficient input validation in the Microsoft Outlook iOS software. This allows a remote attacker to perform cross-site scripting attacks, potentially compromising the integrity of protected information. An authenticated attacker can exploit this by sending a specially crafted email message to a victim, enabling them to run scripts in the security context of the current user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.