VDB
CVE-2024-32987
CVE-2024-32987
PUBLISHED
Es besteht eine Schwachstelle in Microsoft 365 Apps, Microsoft Office, Microsoft Office 2016, Microsoft Office 2019, Microsoft Outlook 2016, Microsoft SharePoint und Microsoft SharePoint Server 2019, die noch nicht im Detail veröffentlicht wurde. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
EPSS 3.74% · 88.2th percentile
Risk Scores
EPSS Score
3.74%
88.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Office 2016 | |
| Microsoft | Microsoft SharePoint Server Subscription Edition | |
| Microsoft | Microsoft Office 2019 | |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | |
| Microsoft | Microsoft Office LTSC 2021 | |
| Microsoft | Microsoft Outlook 2016 | |
| Microsoft | Microsoft 365 Apps | |
| Microsoft | Microsoft SharePoint Server 2019 |
Exploit Intelligence
Timeline
- Jul 9, 2024 CVE Published
- Jul 10, 2024 EPSS Score
- Aug 23, 2024 EPSS Score
- Sep 14, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 22, 2024 CVE Updated
- Oct 28, 2024 EPSS Score
- Nov 19, 2024 EPSS Score
- Jan 3, 2025 EPSS Score
- Feb 16, 2025 EPSS Score
- Mar 10, 2025 EPSS Score
- Mar 25, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1584.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1584 advisory
- https://msrc.microsoft.com/update-guide advisory
- https://github.com/testanull/MS-SharePoint-July-Patch-RCE-PoC exploit
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog exploit