Lucene search
MicrosoftCVELIST:CVE-2023-41764HistorySep 12, 2023 - 4:58 p.m.
CVE-2023-41764 Microsoft Office Spoofing Vulnerability
2023-09-1216:58:33
CWE-347
microsoft
www.cve.org
1
microsoft office
spoofing
vulnerability
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.6%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Office 2019",
"cpes": [
"cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "19.0.0",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft 365 Apps for Enterprise",
"cpes": [
"cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office LTSC 2021",
"cpes": [
"cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems",
"32-bit Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office 2016",
"cpes": [
"cpe:2.3:a:microsoft:office:2016:*:*:*:*:*:x86:*",
"cpe:2.3:a:microsoft:office:2016:*:*:*:*:*:x64:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0",
"lessThan": "16.0.5413.1000",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office 2013 Service Pack 1",
"cpes": [
"cpe:2.3:a:microsoft:office:2013:sp1:*:*:rt:*:*:*",
"cpe:2.3:a:microsoft:office:2013:sp1:*:*:*:*:x86:*",
"cpe:2.3:a:microsoft:office:2013:sp1:*:*:*:*:x64:*"
],
"platforms": [
"ARM64-based Systems",
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "15.0.0",
"lessThan": "15.0.5589.1000",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
cve
cve
CVE-2023-41764
2023-09-12 17:15:24
prion
prion
Spoofing
2023-09-12 17:15:00
mscve
mscve
Microsoft Office Spoofing Vulnerability
2023-09-12 07:00:00
mskb
mskb
cnvd
cnvd
Microsoft Office Spoofing Vulnerability (CNVD-2024-02719)
2023-09-15 00:00:00
openvas
openvas
Microsoft Office 2016 Spoofing Vulnerability (KB5002100)
2023-09-13 00:00:00
Microsoft Office 2016 Multiple Vulnerabilities (KB5002457)
2023-09-13 00:00:00
Microsoft Office 2013 Service Pack 1 Multiple Vulnerabilities (KB5002477)
2023-09-13 00:00:00
nvd
nvd
CVE-2023-41764
2023-09-12 17:15:24
nessus
nessus
kaspersky
kaspersky
KLA60562 Multiple vulnerabilities in Microsoft Office
2023-09-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C
6.1 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.6%
Related for CVELIST:CVE-2023-41764