CVE-2024-21413CISA KEVEPSS p99.8%

CVE-2024-21413Microsoft Outlook Improper Input Validation Vulnerability

Microsoft / Office Outlook

Description

Microsoft Outlook contains an improper input validation vulnerability that allows for remote code execution. Successful exploitation of this vulnerability would allow an attacker to bypass the Office Protected View and open in editing mode rather than protected mode.

Scoring

EPSS94.66% probability of exploitation · percentile 99.8% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2025-02-06

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Outlook Improper Input Validation Vulnerabilitykev-cve-2024-214130%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Office Outlook Security Feature Bypass Vulnerability
CVE
CVE-2026-26106
CVE
CVE-2025-59228
CVE
Microsoft Outlook Security Feature Bypass Vulnerability
CVE
Microsoft Office Outlook Privilege Escalation Vulnerability
CVE
Microsoft Exchange Server Remote Code Execution Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.