Vulnerability   
Search   
    Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.820041
Category:Windows : Microsoft Bulletins
Title:Microsoft Office 365 Apps for Enterprise RCE Vulnerability (Nov 2021)
Summary:This host is missing an important security; update according to Microsoft Office Click-to-Run updates
Description:Summary:
This host is missing an important security
update according to Microsoft Office Click-to-Run updates

Vulnerability Insight:
The flaw is due to an improper input
validation in Microsoft Word.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to execute arbitrary code on the target system.

Affected Software/OS:
Microsoft Office 2016/2019 C2R.

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
6.9

CVSS Vector:
AV:L/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2021-42296
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42296
CopyrightCopyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.