CVE-2022-21841

Опубликовано: 11 янв. 2022

Источник: msrc

CVSS3: 7.8

EPSS Низкий

Описание

Microsoft Excel Remote Code Execution Vulnerability

FAQ

Is the Preview Pane an attack vector for this vulnerability?

No, the Preview Pane is not an attack vector.

Are the updates for the Microsoft Office for Mac currently available?

The security update for Microsoft Office 2019 for Mac and Microsoft Office LTSC for Mac 2021 are not immediately available. The updates will be released as soon as possible, and when they are available, customers will be notified via a revision to this CVE information.

Обновления

Продукт	Статья	Обновление
Microsoft Office 2013 Service Pack 1 (32-bit editions)	5002119	Security Update
Microsoft Office 2013 Service Pack 1 (64-bit editions)	5002119	Security Update
Microsoft Office 2013 RT Service Pack 1	5002119	-
Microsoft Office 2016 (32-bit edition)	5002116	Security Update
Microsoft Office 2016 (64-bit edition)	5002116	Security Update
Microsoft Office 2019 for 32-bit editions	Click to Run	-
Microsoft Office 2019 for 64-bit editions	Click to Run	-
Microsoft Office 2019 for Mac	Release Notes	Security Update
Microsoft 365 Apps for Enterprise for 32-bit Systems	Click to Run	-
Microsoft 365 Apps for Enterprise for 64-bit Systems	Click to Run	-

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

EPSS

Процентиль: 83%

0.01942

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2022-21841

CVSS3: 7.8

nvd

около 4 лет назад

Microsoft Excel Remote Code Execution Vulnerability

GHSA-5m54-9cp2-p93x

CVSS3: 7.8

github

около 4 лет назад

Microsoft Excel Remote Code Execution Vulnerability.

BDU:2022-01279

CVSS3: 7.8

fstec

около 4 лет назад

Уязвимость редактора электронных таблиц Microsoft Excel, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю выполнить произвольный код в целевой системе

EPSS

Процентиль: 83%

0.01942

Низкий

7.8 High

CVSS3