BDU%3A2024-04661 — Vulnetix

BDU%3A2024-04661 PUBLISHED CVSS 7.800000190734863 HIGH

Уязвимость пакета программ Microsoft Office, связанная с некорректным определением символических ссылок перед доступом к файлу, позволяющая нарушителю выполнить произвольный код

Risk Scores

CVSS 3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

Vendor	Product	Versions
Microsoft	Microsoft 365 Apps for Enterprise	16.0.1
microsoft	office_2021	16.0.1
Microsoft	Microsoft Office LTSC 2021	16.0.1
Microsoft	Microsoft Office 2019	19.0.0
microsoft	office_2019	19.0.0
Microsoft Corp	Microsoft Office 2016, Microsoft Office 2019, Microsoft 365 Apps for Enterprise, Microsoft Office LTSC 2021
microsoft	365_apps	16.0.1
microsoft	office_2016	16.0.0
Microsoft	Microsoft Office 2016	16.0.0

Exploit Intelligence

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30104 (circl)
matching_rules_test.go (github-poc)
matching_rules_test.go (github-poc)
matching_rules_test.go (github-poc)
matching_rules_test.go (github-poc)
matching_rules.go (github-poc)
matching_rules.go (github-poc)
matching_rules.go (github-poc)
matching_rules.go (github-poc)

Timeline

Jun 11, 2024 CVE Published
Jun 19, 2024 CVE Updated
Jun 29, 2026 Security Advisory

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30104 url

Open in Interactive Console →