CVE-2022-41031

2022-10-1119:15:20

[email protected]

web.nvd.nist.gov

microsoft word

remote code execution

vulnerability

cve-2022-41031

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

68.2%

JSON

Microsoft Word Remote Code Execution Vulnerability

Affected configurations

Nvd

Node

microsoft365_appsMatch-enterprise

microsoftofficeMatch2019macos

microsoftoffice_long_term_servicing_channelMatch2021-

microsoftoffice_long_term_servicing_channelMatch2021macos

VendorProductVersionCPE
microsoft365_apps-cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*
microsoftoffice2019cpe:2.3:a:microsoft:office:2019:*:*:*:*:macos:*:*
microsoftoffice_long_term_servicing_channel2021cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:-:*:*
microsoftoffice_long_term_servicing_channel2021cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:macos:*:*

Vendor	Product	Version	CPE
microsoft	365_apps	-	cpe:2.3:a:microsoft:365_apps:-::::enterprise:::
microsoft	office	2019	cpe:2.3:a:microsoft:office:2019:::::macos::
microsoft	office_long_term_servicing_channel	2021	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::-::
microsoft	office_long_term_servicing_channel	2021	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::macos::