VYPR
Unrated severityNVD Advisory· Published Dec 18, 2024· Updated Dec 20, 2024

CVE-2024-41138

CVE-2024-41138

Description

A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Microsoft/Teamsllm-create
    Range: = 24046.2813.2770.1094
  • Microsoft/Teams (work or school)v5
    Range: 24046.2812.2722.8193 for macOS

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.