Outlook for Android XSS

Outlook for Android XSS

Outlook for Android is the most popular e-mail application for organizations. CyberArk Labs discovered a cross-site scripting vulnerability that allows an attacker to run JavaScript code through e-mail messages. After discovering this vulnerability, CyberArk Labs alerted Microsoft in January 2019, following the responsible disclosure process. The vulnerability, assigned CVE-2019-1105, was fixed by Microsoft and released in June 2019….