Lucene search
MicrosoftCVELIST:CVE-2024-21379HistoryFeb 13, 2024 - 6:02 p.m.
CVE-2024-21379 Microsoft Word Remote Code Execution Vulnerability
2024-02-1318:02:19
CWE-190
microsoft
www.cve.org
cve-2024-21379
microsoft word
remote code execution
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
19.6%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft Office 2019",
"cpes": [
"cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "19.0.0",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft 365 Apps for Enterprise",
"cpes": [
"cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Office LTSC 2021",
"cpes": [
"cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*"
],
"platforms": [
"x64-based Systems",
"32-bit Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Word 2016",
"cpes": [
"cpe:2.3:a:microsoft:word:2016:*:*:*:*:*:*:*"
],
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"versions": [
{
"version": "16.0.1",
"lessThan": "16.0.5435.1000",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-21379
2024-02-13 18:15:55
zdi
zdi
nessus
nessus
Security Updates for Microsoft Word Products C2R (February 2024)
2024-02-14 00:00:00
Security Updates for Microsoft Word Products (February 2024)
2024-02-13 00:00:00
prion
prion
Remote code execution
2024-02-13 18:15:00
mscve
mscve
Microsoft Word Remote Code Execution Vulnerability
2024-02-13 08:00:00
cve
cve
CVE-2024-21379
2024-02-13 18:15:55
openvas
openvas
mskb
mskb
talosblog
talosblog
kaspersky
kaspersky
KLA63961 Multiple vulnerabilities in Microsoft Office
2024-02-13 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, February 2024 Security Update Review
2024-02-13 20:03:29
rapid7blog
rapid7blog
Patch Tuesday - February 2024
2024-02-13 21:26:21
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
19.6%
Related for CVELIST:CVE-2024-21379