The vulnerability of Microsoft Office packages and Microsoft Office Web Apps lies in the lack of protection for sensitive data, allowing attackers to disclose protected information.

🗓️ 24 May 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 6 Views

Office packages and Office Web Apps vulnerability exposes protected data due to weak protection.

Reporter	Title	Published	Views	Family All 27
Circl	CVE-2021-31178	8 Jun 202115:15	–	circl
CNNVD	Microsoft Excel 数字错误漏洞	11 May 202100:00	–	cnnvd
CVE	CVE-2021-31178	11 May 202119:11	–	cve
Cvelist	CVE-2021-31178 Microsoft Office Information Disclosure Vulnerability	11 May 202119:11	–	cvelist
Microsoft KB	Description of the security update for Office Online Server: May 11, 2021 (KB5001914)	11 May 202107:00	–	mskb
Microsoft KB	Description of the security update for Excel 2016: May 11, 2021 (KB5001918)	11 May 202107:00	–	mskb
Microsoft KB	Description of the security update for Office 2016: May 11, 2021 (KB5001923)	11 May 202107:00	–	mskb
Microsoft KB	Description of the security update for Office 2013: May 11, 2021 (KB5001927)	11 May 202107:00	–	mskb
Microsoft KB	Description of the security update for Office Web Apps Server 2013: May 11, 2021 (KB5001928)	11 May 202107:00	–	mskb
Microsoft KB	Description of the security update for Excel 2013: May 11, 2021 (KB5001936)	11 May 202107:00	–	mskb

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31178
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-31178
web	www.web.nvd.nist.gov/view/vuln/detail

24 May 2021 00:00Current

6.2Medium risk

Vulners AI Score6.2

CVSS 24.7

CVSS 35.5

EPSS0.16012

Microsoft Office Office Web Apps data protection