Lucene search
MicrosoftCVELIST:CVE-2024-21378HistoryFeb 13, 2024 - 6:02 p.m.
CVE-2024-21378 Microsoft Outlook Remote Code Execution Vulnerability
2024-02-1318:02:42
CWE-94
microsoft
www.cve.org
1
cve-2024-21378
microsoft
outlook
remote code execution
vulnerability
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.8%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Office 2019",
"cpes": [
"cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "19.0.0",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft 365 Apps for Enterprise",
"cpes": [
"cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office LTSC 2021",
"cpes": [
"cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems",
"32-bit Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Outlook 2016",
"cpes": [
"cpe:2.3:a:microsoft:outlook:2016:*:*:*:*:x86:*:*",
"cpe:2.3:a:microsoft:outlook:2016:*:*:*:*:x64:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.0.0",
"lessThan": "16.0.5435.1000",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
openvas
openvas
Microsoft Outlook 2016 Remote Code Execution Vulnerability (KB5002543)
2024-02-14 00:00:00
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Feb 2024)
2024-02-14 00:00:00
githubexploit
githubexploit
Exploit for Code Injection in Microsoft
2024-03-12 14:11:58
Exploit for Vulnerability in Microsoft
2024-03-12 14:19:45
prion
prion
Remote code execution
2024-02-13 18:15:00
mskb
mskb
nvd
nvd
CVE-2024-21378
2024-02-13 18:15:55
cve
cve
CVE-2024-21378
2024-02-13 18:15:55
nessus
nessus
Security Updates for Outlook (February 2024)
2024-02-13 00:00:00
Security Updates for Outlook C2R (February 2024)
2024-02-14 00:00:00
mscve
mscve
Microsoft Outlook Remote Code Execution Vulnerability
2024-02-13 08:00:00
talosblog
talosblog
kaspersky
kaspersky
KLA63961 Multiple vulnerabilities in Microsoft Office
2024-02-13 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, February 2024 Security Update Review
2024-02-13 20:03:29
avleonov
avleonov
rapid7blog
rapid7blog
Patch Tuesday - February 2024
2024-02-13 21:26:21
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.8%
Related for CVELIST:CVE-2024-21378