CVE-2022-27105

Name of the Vulnerable Software and Affected Versions InMailX Outlook Plugin versions prior to 3.22.0101

Description The issue allows a local user or network administrator to execute HTML/Javascript in the Outlook of users due to unsanitized InMailX Connection names in the Outlook tab. This enables the execution of malicious scripts, potentially leading to security breaches.

Recommendations For versions prior to 3.22.0101, update to version 3.22.0101 or later to resolve the issue. As a temporary workaround, consider restricting access to the Outlook tab or sanitizing InMailX Connection names manually until a patch is applied.