Researchers Disclose Zero-Click Exploit for Microsoft Outlook
The vulnerabilities, CVE-2023-35384 and CVE-2023-36710, allow an attacker to bypass security measures and execute code on a victim’s machine by tricking Outlook into downloading a specially crafted sound file.