Lucene search
MicrosoftVULNRICHMENT:CVE-2022-41104HistoryNov 09, 2022 - 12:00 a.m.
CVE-2022-41104 Microsoft Excel Security Feature Bypass Vulnerability
2022-11-0900:00:00
microsoft
github.com
cve-2022-41104
microsoft excel
security feature bypass
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Office 2019",
"cpes": [
"cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "19.0.0",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft 365 Apps for Enterprise",
"cpes": [
"cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office LTSC 2021",
"cpes": [
"cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems",
"32-bit Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Excel 2016",
"cpes": [
"cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:x86:*",
"cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:x64:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0.0",
"lessThan": "16.0.5369.1000",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Excel 2013 Service Pack 1",
"cpes": [
"cpe:2.3:a:microsoft:excel:2013:sp1:*:*:rt:*:*:*",
"cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:x86:*",
"cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:x64:*"
],
"platforms": [
"ARM64-based Systems",
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "15.0.0.0",
"lessThan": "15.0.5501.1000",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2022-41104
2022-11-09 22:15:23
cnvd
cnvd
Microsoft Excel Security Feature Bypass Vulnerability (CNVD-2023-53470)
2022-11-10 00:00:00
prion
prion
Security feature bypass
2022-11-09 22:15:00
mscve
mscve
Microsoft Excel Security Feature Bypass Vulnerability
2022-11-08 08:00:00
nvd
nvd
CVE-2022-41104
2022-11-09 22:15:23
cvelist
cvelist
CVE-2022-41104 Microsoft Excel Security Feature Bypass Vulnerability
2022-11-09 00:00:00
mskb
mskb
nessus
nessus
Security Updates for Microsoft Excel Products (November 2022)
2022-11-08 00:00:00
Security Updates for Microsoft Excel Products C2R (November 2022)
2022-11-28 00:00:00
openvas
openvas
Microsoft Excel 2016 Security Feature Bypass And Remote Code Execution Vulnerabilities (KB5002253)
2022-11-09 00:00:00
Microsoft Excel 2013 Service Pack 1 Multiple Vulnerabilities (KB5002275)
2022-11-09 00:00:00
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Nov 2022)
2022-11-09 00:00:00
kaspersky
kaspersky
KLA20044 Multiple vulnerabilities in Microsoft Office
2022-11-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
6.8 Medium
AI Score
Confidence
Low
Related for VULNRICHMENT:CVE-2022-41104