According to the CVSS metrics, successful exploitation of this vulnerability could lead to major loss of confidentiality (C:H), integrity (I:H), and availability (A:H). What does that mean for this vulnerability? An attacker who successfully exploited this vulnerability could gain high privileges, which include read, write, and delete functionality. According to the CVSS metric, the attack vector is network (AV:N) and user interaction is required (UI:R). What is the target context of the remote code execution? This attack requires a user to allow blocked content sent from an external attacker to initiate remote code execution. Is the Preview Pane an attack vector for this vulnerability? No, the Preview Pane is not an attack vector. How could the attacker exploit this vulnerability? An attacker could craft a malicious link that bypasses the Protected View Protocol, which could lead remote code execution (RCE).
<a href="https://x.com/osipov_ar">Arnold Osipov</a> with <a href="https://www.morphisec.com/">Morphisec</a>, <a href="https://www.linkedin.com/in/shmuel-uzan-aa21ab158/">Shmuel Uzan</a> with <a href="https://www.morphisec.com/">Morphisec</a>, <a href="https://www.linkedin.com/in/smgoreli/">Michael Gorelik</a> with <a href="https://www.morphisec.com/">Morphisec</a>