Lucene search

Kaspersky LabKLA20121

HistoryDec 13, 2022 - 12:00 a.m.

KLA20121 Multiple vulnerabilities in Microsoft Office

2022-12-1300:00:00

Kaspersky Lab

threats.kaspersky.com

222

microsoft office

microsoft sharepoint server

microsoft office visio

malicious users

arbitrary code execution

remote exploitation

ui spoofing

outlook for mac

onenote

cve-2022-26806

cve-2022-26805

cve-2022-44693

cve-2022-47211

cve-2022-26804

cve-2022-44695

cve-2022-44694

cve-2022-44696

cve-2022-44690

cve-2022-44713

cve-2022-47212

cve-2022-44691

cve-2022-47213

cve-2022-44692

microsoft-sharepoint

microsoft-office

kb updates

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.013

Percentile

85.9%

JSON

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

A remote code execution vulnerability in Microsoft Office Graphics can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Microsoft Office Visio can be exploited remotely to execute arbitrary code.
A spoofing vulnerability in Microsoft Outlook for Mac can be exploited remotely to spoof user interface.
A remote code execution vulnerability in Microsoft Office OneNote can be exploited remotely to execute arbitrary code.

Original advisories

Related products

Microsoft-Office

Microsoft-SharePoint

CVE list

CVE-2022-26806 critical

CVE-2022-26805 critical

CVE-2022-44693 critical

CVE-2022-47211 critical

CVE-2022-26804 critical

CVE-2022-44695 critical

CVE-2022-44694 critical

CVE-2022-44696 critical

CVE-2022-44690 critical

CVE-2022-44713 critical

CVE-2022-47212 critical

CVE-2022-44691 critical

CVE-2022-47213 critical

CVE-2022-44692 critical

KB list

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

Microsoft Office 2019 for MacMicrosoft Visio 2013 Service Pack 1 (32-bit editions)Microsoft 365 Apps for Enterprise for 64-bit SystemsMicrosoft Visio 2016 (64-bit edition)Microsoft Office 2019 for 32-bit editionsMicrosoft Visio 2016 (32-bit edition)Microsoft SharePoint Foundation 2013 Service Pack 1Microsoft SharePoint Enterprise Server 2013 Service Pack 1Microsoft SharePoint Enterprise Server 2016Microsoft Office LTSC 2021 for 32-bit editionsMicrosoft Office LTSC for Mac 2021Microsoft Visio 2013 Service Pack 1 (64-bit editions)Microsoft SharePoint Server Subscription EditionMicrosoft Office LTSC 2021 for 64-bit editionsMicrosoft SharePoint Server 2019Microsoft 365 Apps for Enterprise for 32-bit SystemsMicrosoft Office 2019 for 64-bit editions