7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.331 Low
EPSS
Percentile
97.0%
09/14/2021
High
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface.
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2019 for 64-bit editions
Microsoft Excel 2016 (32-bit edition)
Microsoft Office 2019 for Mac
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft 365 Apps for Enterprise for 32-bit Systems
Microsoft Office 2016 (32-bit edition)
Microsoft SharePoint Enterprise Server 2016
Microsoft Office 2016 (64-bit edition)
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Microsoft Office Online Server
Microsoft 365 Apps for Enterprise for 64-bit Systems
Microsoft Office Web Apps Server 2013 Service Pack 1
Microsoft Office 2019 for 32-bit editions
Microsoft Excel 2016 (64-bit edition)
Microsoft Office 2013 RT Service Pack 1
Microsoft Excel 2013 RT Service Pack 1
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft SharePoint Server 2019
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2021-38660
CVE-2021-38654
CVE-2021-38655
CVE-2021-38656
CVE-2021-38659
CVE-2021-38653
CVE-2021-38658
CVE-2021-38651
CVE-2021-38646
CVE-2021-38652
CVE-2021-38650
CVE-2021-38657
ACE
4484108
5001997
5002014
5002024
5002007
4484103
5002009
5002018
5002003
5002020
5001999
5002005
5001958
support.microsoft.com/kb/4484103
support.microsoft.com/kb/4484108
support.microsoft.com/kb/5001958
support.microsoft.com/kb/5001997
support.microsoft.com/kb/5001999
support.microsoft.com/kb/5002003
support.microsoft.com/kb/5002005
support.microsoft.com/kb/5002007
support.microsoft.com/kb/5002009
support.microsoft.com/kb/5002014
support.microsoft.com/kb/5002018
support.microsoft.com/kb/5002020
support.microsoft.com/kb/5002024
nvd.nist.gov/vuln/detail/CVE-2021-38646
nvd.nist.gov/vuln/detail/CVE-2021-38650
nvd.nist.gov/vuln/detail/CVE-2021-38651
nvd.nist.gov/vuln/detail/CVE-2021-38652
nvd.nist.gov/vuln/detail/CVE-2021-38653
nvd.nist.gov/vuln/detail/CVE-2021-38654
nvd.nist.gov/vuln/detail/CVE-2021-38655
nvd.nist.gov/vuln/detail/CVE-2021-38656
nvd.nist.gov/vuln/detail/CVE-2021-38657
nvd.nist.gov/vuln/detail/CVE-2021-38658
nvd.nist.gov/vuln/detail/CVE-2021-38659
nvd.nist.gov/vuln/detail/CVE-2021-38660
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Excel/
threats.kaspersky.com/en/product/Microsoft-Office/
threats.kaspersky.com/en/product/Microsoft-Sharepoint-Server/
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.331 Low
EPSS
Percentile
97.0%