KLA12337
Multiple vulnerabilities in Microsoft Office

Updated: 03/21/2023
Detect date
?
11/09/2021
Severity
?
High
Description

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in Microsoft Excel can be exploited remotely to bypass security restrictions.
  2. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
  3. A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
  4. A remote code execution vulnerability in Microsoft Access can be exploited remotely to execute arbitrary code.
Exploitation

The following public exploits exists for this vulnerability:

https://github.com/corelight/CVE-2021-42292

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Affected products

Microsoft Office Online Server
Microsoft Office 2019 for Mac
Microsoft Office 2016 (32-bit edition)
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2016 (64-bit edition)
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2019 for 32-bit editions
Microsoft 365 Apps for Enterprise for 32-bit Systems
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Excel 2016 (32-bit edition)
Microsoft 365 Apps for Enterprise for 64-bit Systems
Microsoft Office Web Apps Server 2013 Service Pack 1
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Excel 2016 (64-bit edition)
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Microsoft Excel 2013 RT Service Pack 1
Microsoft Office LTSC 2021 for 32-bit editions
Microsoft Office LTSC for Mac 2021
Microsoft Office 2019 for 64-bit editions
Microsoft SharePoint Enterprise Server 2013 Service Pack 1
Microsoft Office LTSC 2021 for 64-bit editions

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2021-42292
CVE-2021-40442
CVE-2021-42296
CVE-2021-41368

Impacts
?
ACE 
[?]

SB 
[?]
Related products
Microsoft Office
Microsoft Excel
Microsoft SharePoint
CVE-IDS
?
KB list

5002072
5002056
4486670
5002032
5002065
5002035
5002038
5002063
5002053

Microsoft official advisories
Microsoft Security Update Guide
Find out the statistics of the vulnerabilities spreading in your region