7.8

CVE-2023-33158

Microsoft Excel Remote Code Execution Vulnerability

Microsoft Excel Remote Code Execution Vulnerability
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft365 Apps Version- SwEditionenterprise HwPlatformx64
Microsoft365 Apps Version- SwEditionenterprise HwPlatformx86
MicrosoftOffice Version- SwPlatformuniversal
MicrosoftOffice Version2019 SwPlatformmacos
MicrosoftOffice Long Term Servicing Channel Version2021 HwPlatformx64
MicrosoftOffice Long Term Servicing Channel Version2021 HwPlatformx86
MicrosoftOffice Long Term Servicing Channel Version2021 SwPlatformmacos
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.62% 0.449
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
secure@microsoft.com 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE-191 Integer Underflow (Wrap or Wraparound)

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33158
Patch
Vendor Advisory