A vulnerability classified as critical has been found in Microsoft GroupMe. Affected is an unknown function. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2024-38164. It is possible to launch the attack remotely. There is no exploit available.

This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves. It is recommended to apply a patch to fix this issue.