Vulnerabilities in Microsoft Teams allowed link spoofing of URLs and opened the door to DoS attacks against Android users, researchers said. So far, only one of the bugs appears to have been patched by Microsoft. Microsoft said the reported bugs do not pose an immediate threat to users.
Use of the Teams platform has risen during the pandemic, making it an attractive target for hackers. The SSRF vulnerability allowed researchers to leak information from Microsoft’s local network.