PT-2023-7008 · Microsoft · Office

Eduardo Braun Prado

Publicado

2023-11-14

Atualizado

2023-11-20

CVE-2023-36413

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified)

Description The issue is related to a security feature bypass in Microsoft Office, which is connected to access control errors. Exploitation of this issue may allow an attacker to bypass existing security restrictions. It enables an attacker to have an impact on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-285

Identificadores relacionados

BDU:2023-08028

CVE-2023-36413

Produtos afetados

Office

PT-2023-7008 · Microsoft · Office

CVE-2023-36413

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8