VDB
CVE-2023-21743
CVE-2023-21743
PUBLISHED
Es existieren mehrere Schwachstellen in verschiedenen Microsoft Office Produkten. Die Fehler sind noch nicht im Detail beschrieben. Ein entfernter, anonymer oder authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen und vertrauliche Informationen offenzulegen. Das erfolgreiche Ausnutzen einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.
EPSS 11.60% · 93.8th percentile
Risk Scores
EPSS Score
11.60%
93.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Office 2019 for Mac | |
| Microsoft | Microsoft Office LTSC 2021 | |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | |
| Microsoft | Microsoft Visio 2016 | |
| Microsoft | Microsoft SharePoint Server Subscription Edition | |
| Microsoft | Microsoft SharePoint Foundation 2013 SP1 | |
| Microsoft | Microsoft SharePoint Enterprise Server 2013 SP1 | |
| Microsoft | Microsoft SharePoint Server 2019 | |
| Microsoft | Microsoft Visio 2013 SP1 | |
| Microsoft | Microsoft 365 Apps | |
| Microsoft | Microsoft Office LTSC for Mac 2021 | |
| Microsoft | Microsoft Office 2019 |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- Microsoft SharePoint Server Security Feature Bypass Vulnerability (circl)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
…and 8 more exploits
Timeline
- Jan 10, 2023 CVE Published
- Jan 11, 2023 EPSS Score
- Jan 18, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jun 23, 2023 EPSS Score
- Aug 3, 2023 EPSS Score
- Sep 13, 2023 EPSS Score
- Dec 4, 2023 EPSS Score
- Jan 14, 2024 EPSS Score
- Apr 4, 2024 EPSS Score
- May 15, 2024 EPSS Score