Description

Microsoft Word Remote Code Execution Vulnerability

Related CPE's

a

microsoft

office

2019

Vulnerable

a

microsoft

office_online_server

-

Vulnerable

a

microsoft

office_web_apps_server

2013

sp1

Vulnerable

a

microsoft

sharepoint_enterprise_server

2

a

microsoft

sharepoint_server

2019

Vulnerable

a

microsoft

word

3

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40486

PatchVendor Advisory

https://www.zerodayinitiative.com/advisories/ZDI-21-1158/

Third Party Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-10-13T01:15:12.127

3 years ago

Last modified

2023-08-01T23:15:21.573

1 year ago