CVE-2021-42292
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
Summary
Microsoft Excel Security Feature Bypass Vulnerability
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft Office 2019 | 19.0.0 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office 2019 for Mac | 16.0.0 < 16.55.21111400 | affected |
| Microsoft | Microsoft 365 Apps for Enterprise | 16.0.1 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office LTSC for Mac 2021 | 16.0.1 < 16.55.21111400 | affected |
| Microsoft | Microsoft Office LTSC 2021 | 16.0.1 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Excel 2016 | 16.0.0.0 < 16.0.5239.1001 | affected |
| Microsoft | Microsoft Office 2016 | 16.0.0 < 16.0.5239.1001 | affected |
| Microsoft | Microsoft Excel 2013 Service Pack 1 | 15.0.0.0 < 15.0.5397.1001 | affected |
| Microsoft | Microsoft Office 2013 Service Pack 1 | 15.0.0 < 15.0.5397.1001 | affected |
Weaknesses
- Security Feature Bypass
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: no
- Technical Impact: total
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.