CVE-2021-28456

Name of the Vulnerable Software and Affected Versions Microsoft Office versions (affected versions not specified) Microsoft Office Web Apps Server versions (affected versions not specified) Microsoft Excel versions (affected versions not specified) Microsoft 365 Apps for Enterprise versions (affected versions not specified) Microsoft Office Online Server versions (affected versions not specified)

Description The issue is related to insufficient protection of sensitive data in Microsoft products. It may allow an attacker to gain unauthorized access to protected information. An information disclosure vulnerability in Microsoft Excel can be exploited to affect the system.

Recommendations For Microsoft Office, update to a version that includes the fix for this issue. For Microsoft Office Web Apps Server, apply the necessary configuration changes to mitigate the risk. For Microsoft Excel, consider restricting access to sensitive data until a patch is available. For Microsoft 365 Apps for Enterprise, update to a version that includes the fix for this issue. For Microsoft Office Online Server, apply the necessary security updates to resolve the issue.