CVE-2024-41159

Name of the Vulnerable Software and Affected Versions Microsoft OneNote version 16.83

Description A library injection vulnerability exists in Microsoft OneNote for macOS. This issue is related to incorrect cryptographic signature verification, allowing a specially crafted library to leverage OneNote's access privileges and bypass existing security restrictions. A malicious application could inject a library and start the program to trigger this vulnerability, then make use of the vulnerable application's permissions.

Recommendations For Microsoft OneNote version 16.83, consider disabling the application until a patch is available to prevent potential exploitation of the library injection vulnerability. Restrict access to the application to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.