deltatux :donor: on Nostr: npub1vcl9k…hk6t3 One annoying thing is that Microsoft doesn't state if this CVE was ...
npub1vcl9kcqwwsk536z8s4h6k48qrfkm7mahzrk5mz0v04j94507d20s6hk6t3 (npub1vcl…k6t3)
One annoying thing is that Microsoft doesn't state if this CVE was resolved for Microsoft Teams. It appears that Microsoft Teams uses an outdated version of Electron (19.1.8) which EOL back in 2022 but the app did receive an update also on September 15th along with Edge but they don't say if it includes patches for the CVE or not...
https://learn.microsoft.com/en-us/officeupdates/teams-app-versioning
As Teams is heavily used in enterprise environments, I wished they added more details in their Teams release notes like they do with Microsoft Edge which does say that it patched CVE-2023-4863 (which was replaced by CVE-2023-5129): https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security
One annoying thing is that Microsoft doesn't state if this CVE was resolved for Microsoft Teams. It appears that Microsoft Teams uses an outdated version of Electron (19.1.8) which EOL back in 2022 but the app did receive an update also on September 15th along with Edge but they don't say if it includes patches for the CVE or not...
https://learn.microsoft.com/en-us/officeupdates/teams-app-versioning
As Teams is heavily used in enterprise environments, I wished they added more details in their Teams release notes like they do with Microsoft Edge which does say that it patched CVE-2023-4863 (which was replaced by CVE-2023-5129): https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security