VDB
CVE-2022-24472
CVE-2022-24472
PUBLISHED
CVSS 8 HIGH
De multiples vulnérabilités ont été corrigées dans <span class="textit">Microsoft Office</span>. Elles permettent à un attaquant de provoquer une exécution de code à distance et une usurpation d'identité.
EPSS 6.96% · 91.6th percentile
Risk Scores
CVSS 3.1
8
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
6.96%
91.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft SharePoint Server Subscription Edition | 16.0.0 |
| Microsoft | Microsoft SharePoint Foundation 2013 Service Pack 1 | 15.0.0 |
| Microsoft | Microsoft SharePoint Server 2016 | 16.0.0.0 |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | 16.0.0 |
| microsoft | sharepoint_server | 2019, 16.0.0.0, 2016 |
| Microsoft | Office | |
| microsoft | sharepoint_foundation | 15.0.0, 2013 |
| Microsoft | Microsoft SharePoint Server 2019 | 16.0.0 |
Timeline
- Apr 12, 2022 CVE Published
- Apr 16, 2022 EPSS Score
- Jun 5, 2022 EPSS Score
- Sep 14, 2022 EPSS Score
- Nov 4, 2022 EPSS Score
- Feb 12, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 12, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Oct 21, 2023 EPSS Score
- Jan 29, 2024 EPSS Score