CVE-2022-2077

Name of the Vulnerable Software and Affected Versions Microsoft Office 365 (affected versions not specified)

Description The issue is related to errors in the implementation of the Conditional Access Policy for the endpoint, which may allow a remote attacker to gain unauthorized access to protected information. This is due to improper access controls. The attack can be initiated remotely.

Recommendations As a temporary workaround, consider changing the configuration settings to mitigate the issue. Restrict access to sensitive information until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.