VDB
CVE-2023-29333
CVE-2023-29333
PUBLISHED
Es existiert eine Schwachstelle in Microsoft 365 Apps, Microsoft Office und Microsoft Office 2019. Microsoft veröffentlicht keine weiteren Details zur Schwachstelle. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.
EPSS 0.53% · 67.5th percentile
Risk Scores
EPSS Score
0.53%
67.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft 365 Apps | |
| Microsoft | Microsoft Office 2019 | |
| Microsoft | Microsoft Office LTSC 2021 | |
| Microsoft | Microsoft Office LTSC for Mac 2021 |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html (certbund)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
- risk_calculator.cpp (github-poc)
…and 8 more exploits
Timeline
- May 9, 2023 CVE Published
- May 10, 2023 EPSS Score
- Jun 16, 2023 EPSS Score
- Jul 23, 2023 EPSS Score
- Oct 4, 2023 EPSS Score
- Nov 10, 2023 EPSS Score
- Dec 17, 2023 EPSS Score
- Jan 22, 2024 EPSS Score
- Feb 28, 2024 EPSS Score
- Apr 5, 2024 EPSS Score
- Jun 17, 2024 EPSS Score
- Jul 24, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1179.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1179 advisory
- https://msrc.microsoft.com/update-guide advisory
- https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html exploit