CVE-2021-42292 – Microsoft / Multiple – Security Feature Bypass

CVE-2021-42292 is a security feature bypass vulnerability impacting multiple versions of Microsoft Excel. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was actively exploited in the wild.

Summary:

CVE-2021-42292 is a security feature bypass vulnerability impacting multiple versions of Microsoft Excel. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was actively exploited in the wild.

PoC Links(if available):

Microsoft exploitation information –
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-42292

Known Counter Measures:

Microsoft addressed the vulnerability in a security update.

Links to patches(if available)

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-42292