Microsoft Office Graphics code execution | CVE-2023-33149
NAME
__________
Microsoft Office Graphics code execution
Platforms Affected:
Microsoft Office 2013 SP1 x32
Microsoft Office 2013 SP1 x64
Microsoft Office 2016 x32
Microsoft Office 2016 x64
Microsoft Office 2019 Click-to-Run x32
Microsoft Office 2019 Click-to-Run x64
Microsoft Office 2019 Mac
Microsoft 365 Apps for Enterprise x32
Microsoft 365 Apps for Enterprise x64
Microsoft Office LTSC 2021 x32
Microsoft Office LTSC 2021 x64
Microsoft Office LTSC for Mac 2021
Risk Level:
7.8
Exploitability:
Unproven
Consequences:
Gain Privileges
DESCRIPTION
__________
Microsoft Office could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the Graphics component. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS 3.0 Information
__________
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Access Vector:
Local
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
