VDB
CVE-2024-30104
CVE-2024-30104
PUBLISHED
In Microsoft 365 Apps, Microsoft Office, Microsoft Office 2016, Microsoft Office 2019, Microsoft Outlook 2016, Microsoft SharePoint und Microsoft SharePoint Server 2019 existieren mehrere Schwachstellen. Diese werden von Microsoft nicht im Detail beschrieben. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Programmcode auszuführen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich.
EPSS 0.60% · 69.9th percentile
Risk Scores
EPSS Score
0.60%
69.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Office 2019 | |
| Microsoft | Microsoft SharePoint Server Subscription Edition | |
| Microsoft | Microsoft Outlook 2016 | |
| Microsoft | Microsoft Office LTSC 2021 | |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | |
| Microsoft | Microsoft SharePoint Server 2019 | |
| Microsoft | Microsoft 365 Apps | |
| Microsoft | Microsoft Office 2016 |
Exploit Intelligence
- https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1 (msrc)
- Microsoft Office Remote Code Execution Vulnerability (circl)
- matching_rules_test.go (github-poc)
- matching_rules.go (github-poc)
- matching_rules_test.go (github-poc)
- matching_rules_test.go (github-poc)
- matching_rules.go (github-poc)
- matching_rules_test.go (github-poc)
- matching_rules_test.go (github-poc)
- matching_rules_test.go (github-poc)
…and 20 more exploits
Timeline
- Jun 11, 2024 CVE Published
- Jun 12, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Aug 20, 2024 EPSS Score
- Sep 12, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 5, 2024 EPSS Score
- Nov 20, 2024 EPSS Score
- Dec 14, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Jan 29, 2025 EPSS Score
- Mar 16, 2025 EPSS Score