Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA60562
HistorySep 12, 2023 - 12:00 a.m.

KLA60562 Multiple vulnerabilities in Microsoft Office

2023-09-1200:00:00
Kaspersky Lab
threats.kaspersky.com
27
microsoft office
vulnerabilities
high severity
public exploits
affected products
update
kb list
office account
original advisories
impacts
kaspersky
cve-ids
critical
ace

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

10

Confidence

High

EPSS

0.629

Percentile

97.9%

JSON

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, spoof user interface, gain privileges, execute arbitrary code, cause denial of service.

Below is a complete list of vulnerabilities:

  1. An information disclosure vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
  2. A security feature bypass vulnerability in Microsoft Office can be exploited remotely to bypass security restrictions.
  3. A spoofing vulnerability in Microsoft Office can be exploited remotely to spoof user interface.
  4. An information disclosure vulnerability in Microsoft Outlook can be exploited remotely to obtain sensitive information.
  5. An elevation of privilege vulnerability in Microsoft Office can be exploited remotely to gain privileges.
  6. A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
  7. An information disclosure vulnerability in Microsoft Word can be exploited remotely to obtain sensitive information.
  8. An elevation of privilege vulnerability in Microsoft SharePoint Server can be exploited remotely to gain privileges.
  9. Heap buffer overflow vulnerability in WebP can be exploited to cause denial of service.

Original advisories

CVE-2023-36766

CVE-2023-36767

CVE-2023-41764

CVE-2023-36763

CVE-2023-36765

CVE-2023-36762

CVE-2023-36761

CVE-2023-36764

CVE-2023-4863

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Microsoft-Office

Microsoft-Outlook

Microsoft-Excel

Microsoft-Word

Microsoft-SharePoint

CVE list

CVE-2023-4863 critical

CVE-2023-36766 high

CVE-2023-36767 warning

CVE-2023-41764 high

CVE-2023-36763 critical

CVE-2023-36765 critical

CVE-2023-36762 high

CVE-2023-36761 high

CVE-2023-36764 critical

KB list

5002499

5002472

5002470

5002100

5002498

5002494

5002497

5002496

5002457

5002501

5002488

5002474

5002483

5002477

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update component usually can be accessed from the Control Panel) and updates from the Update Options section, that are listed in your Office Account (Office Account tab usually can be accessed from the File menu)

Install Office updates

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

  • DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

  • PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

  • SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

  • Microsoft Excel 2016 (64-bit edition)Microsoft SharePoint Server Subscription EditionMicrosoft Office 2019 for 64-bit editionsMicrosoft Office 2019 for 32-bit editionsMicrosoft 365 Apps for Enterprise for 32-bit SystemsMicrosoft SharePoint Server 2019Microsoft Excel 2013 Service Pack 1 (32-bit editions)Microsoft Office Online ServerMicrosoft Office LTSC 2021 for 64-bit editionsMicrosoft Office LTSC for Mac 2021Microsoft Excel 2016 (32-bit edition)Microsoft Word 2013 RT Service Pack 1Microsoft Office 2016 (32-bit edition)Microsoft Outlook 2016 (64-bit edition)Microsoft SharePoint Enterprise Server 2016Microsoft Word 2013 Service Pack 1 (32-bit editions)Microsoft Word 2016 (64-bit edition)Microsoft 365 Apps for Enterprise for 64-bit SystemsMicrosoft Outlook 2016 (32-bit edition)Microsoft Office 2016 (64-bit edition)Microsoft Word 2016 (32-bit edition)Microsoft Office LTSC 2021 for 32-bit editionsMicrosoft Office 2013 Service Pack 1 (64-bit editions)Microsoft Word 2013 Service Pack 1 (64-bit editions)Microsoft Office 2019 for MacMicrosoft Excel 2013 Service Pack 1 (64-bit editions)Microsoft Office 2013 Service Pack 1 (32-bit editions)Microsoft Office 2013 RT Service Pack 1Microsoft Excel 2013 RT Service Pack 1Microsoft Teams for DesktopMicrosoft SkypeMicrosoft Teams for Mac

References

Related

openvas 32
nessus 51
mskb 14
nvd 8
thn 2
prion 8
mscve 8
cnvd 5
cve 8
cvelist 8
attackerkb 1
cisa_kev 2
krebs 1
talosblog 1
alpinelinux 1
debiancve 1
osv 17
almalinux 4
cloudfoundry 1
ibm 2
amazon 1
debian 3
github 3
hivepro 1
githubexploit 1
wolfi 1
rocky 2
redos 1
cbl_mariner 1
oraclelinux 2
gitlab 1
chrome 1
kaspersky 1
ubuntu 1
fedora 1
veracode 1
freebsd 1
slackware 1
openvas
openvas
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2023)
2023-09-14 00:00:00
Microsoft Office 2019 Multiple Vulnerabilities (Sep 2023) - Mac OS X
2023-09-14 00:00:00
Microsoft Office 2016 Multiple Vulnerabilities (KB5002457)
2023-09-13 00:00:00
nessus
nessus
Security Updates for Microsoft Office Products (Sep 2023) (macOS)
2023-09-12 00:00:00
Security Updates for Microsoft Office Products C2R Multiple Vulnerabilities (September 2023)
2023-09-13 00:00:00
Security Updates for Microsoft Office Products (September 2023)
2023-09-12 00:00:00
mskb
mskb
Description of the security update for Office 2016: September 12, 2023 (KB5002457)
2023-09-12 07:00:00
Description of the security update for Office 2013: September 12, 2023 (KB5002477)
2023-09-12 07:00:00
Description of the security update for Word 2016: September 12, 2023 (KB5002497)
2023-09-12 07:00:00
nvd
nvd
CVE-2023-36762
2023-09-12 17:15:12
CVE-2023-41764
2023-09-12 17:15:24
CVE-2023-36761
2023-09-12 17:15:11
thn
thn
Microsoft Releases Patch for Two New Actively Exploited Zero-Days Flaws
2023-09-13 05:18:00
Mozilla Rushes to Patch WebP Critical Zero-Day Exploit in Firefox and Thunderbird
2023-09-13 01:50:00
prion
prion
Spoofing
2023-09-12 17:15:00
Security feature bypass
2023-09-12 17:15:00
Remote code execution
2023-09-12 17:15:00
mscve
mscve
Microsoft Office Spoofing Vulnerability
2023-09-12 07:00:00
Microsoft Word Remote Code Execution Vulnerability
2023-09-12 07:00:00
Microsoft Office Security Feature Bypass Vulnerability
2023-09-12 07:00:00
cnvd
cnvd
Microsoft Office Security Feature Bypass Vulnerability (CNVD-2024-02720)
2023-09-15 00:00:00
Microsoft Office Spoofing Vulnerability (CNVD-2024-02719)
2023-09-15 00:00:00
Microsoft Excel Information Disclosure Vulnerability (CNVD-2023-80108)
2023-09-15 00:00:00
cve
cve
CVE-2023-41764
2023-09-12 17:15:24
CVE-2023-36762
2023-09-12 17:15:12
CVE-2023-36761
2023-09-12 17:15:11
cvelist
cvelist
CVE-2023-41764 Microsoft Office Spoofing Vulnerability
2023-09-12 16:58:33
CVE-2023-36766 Microsoft Excel Information Disclosure Vulnerability
2023-09-12 16:58:28
CVE-2023-36762 Microsoft Word Remote Code Execution Vulnerability
2023-09-12 16:58:45
attackerkb
attackerkb
CVE-2023-36761
2023-09-12 00:00:00
cisa_kev
cisa_kev
Microsoft Word Information Disclosure Vulnerability
2023-09-12 00:00:00
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
2023-09-13 00:00:00
krebs
krebs
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
2023-09-12 22:36:01
talosblog
talosblog
Turns out even the NFL is worried about deepfakes
2023-09-14 18:00:39
alpinelinux
alpinelinux
CVE-2023-4863
2023-09-12 15:15:24
debiancve
debiancve
CVE-2023-4863
2023-09-12 15:15:24
osv
osv
thunderbird - security update
2023-09-17 00:00:00
PYSEC-2023-184
2023-09-29 21:31:48
Important: libwebp security update
2023-09-26 13:26:19
almalinux
almalinux
Important: thunderbird security update
2023-09-19 00:00:00
Important: thunderbird security update
2023-09-18 00:00:00
Important: libwebp security update
2023-09-19 00:00:00
cloudfoundry
cloudfoundry
USN-6369-1: libwebp vulnerability | Cloud Foundry
2023-10-12 00:00:00
ibm
ibm
Security Bulletin: IBM App Connect Enterprise is vulnerable to a heap-based buffer overflow due to electron
2023-10-20 09:35:15
Security Bulletin: IBM Cognos Analytics Cartridge for IBM Cloud Pak for Data 4.8.0 has addressed a security vulnerability (CVE-2023-4863)
2023-11-29 22:25:21
amazon
amazon
Important: qt5-qtimageformats
2023-11-09 19:19:00
debian
debian
[SECURITY] [DLA 3569-1] thunderbird security update
2023-09-17 09:42:33
[SECURITY] [DSA 5497-1] libwebp security update
2023-09-13 21:07:56
[SECURITY] [DSA 5497-2] libwebp security update
2023-09-17 15:33:28
github
github
opencv-contrib-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863
2024-08-30 23:37:19
libwebp: OOB write in BuildHuffmanTable
2023-09-12 15:30:20
Bundled libwebp in pywebp vulnerable
2023-10-06 16:59:22
hivepro
hivepro
Google Addresses Fourth Zero-Day Flaw Exploited by Attackers Wildly
2023-09-12 13:05:09
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Google Chrome
2023-10-05 03:28:23
wolfi
wolfi
CVE-2023-4863 vulnerabilities
2024-09-30 03:53:08
rocky
rocky
libwebp security update
2023-09-26 13:26:19
firefox security update
2023-09-19 12:09:00
redos
redos
ROS-20230920-03
2023-09-20 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-4863 affecting package libwebp for versions less than 1.3.2-1
2023-10-04 16:53:46
oraclelinux
oraclelinux
firefox security update
2023-09-19 00:00:00
firefox security update
2023-09-19 00:00:00
gitlab
gitlab
CefSharp affected by heap buffer overflow in WebP
2023-09-21 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-09-11 00:00:00
kaspersky
kaspersky
KLA60003 DoS vulnerability in Google Chrome
2023-09-11 00:00:00
ubuntu
ubuntu
Firefox vulnerability
2023-09-14 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: libwebp-1.3.1-3.fc38
2023-09-15 01:43:00
veracode
veracode
Heap Buffer Overflow
2023-09-15 13:45:13
freebsd
freebsd
libwebp heap buffer overflow
2023-09-12 00:00:00
slackware
slackware
[slackware-security] seamonkey
2023-09-21 19:43:16

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

10

Confidence

High

EPSS

0.629

Percentile

97.9%

JSON
Related for KLA60562
openvas32nessus51mskb14nvd8thn2prion8mscve8cnvd5cve8cvelist8attackerkb1cisa_kev2krebs1talosblog1alpinelinux1debiancve1osv17almalinux4cloudfoundry1ibm2amazon1debian3github3hivepro1githubexploit1wolfi1rocky2redos1cbl_mariner1oraclelinux2gitlab1chrome1kaspersky1ubuntu1fedora1veracode1freebsd1slackware1