7.8

CVE-2023-23399

Microsoft Excel Remote Code Execution Vulnerability

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft365 Apps Version- SwEditionenterprise
MicrosoftExcel Version2013 Updatesp1 SwEdition-
MicrosoftExcel Version2013 Updatesp1 SwEditionrt
MicrosoftExcel Version2016
MicrosoftOffice Version2013 Updatesp1 SwEdition-
MicrosoftOffice Version2013 Updatesp1 SwEditionrt
MicrosoftOffice Version2016
MicrosoftOffice Version2019 SwPlatform-
MicrosoftOffice Version2019 SwPlatformmacos
MicrosoftOffice Long Term Servicing Channel Version2021 SwPlatform-
MicrosoftOffice Long Term Servicing Channel Version2021 SwPlatformmacos
MicrosoftOffice Web Apps Server Version2013 Updatesp1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.95% 0.818
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
secure@microsoft.com 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.