CVE-2021-31180

Name of the Vulnerable Software and Affected Versions Microsoft Office Graphics (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Word (affected versions not specified)

Description The issue is related to incorrect code generation management in Microsoft Office Graphics components, which are part of Microsoft Office, Microsoft 365 Apps for Enterprise, and Microsoft Word packages. This can be exploited by opening a specially crafted file, allowing a remote attacker to execute arbitrary code.

Recommendations For Microsoft Office Graphics, consider restricting access to potentially vulnerable files until a patch is available. For Microsoft 365 Apps for Enterprise, avoid opening suspicious files from untrusted sources to minimize the risk of exploitation. For Microsoft Word, as a temporary workaround, consider disabling the ability to open files that may trigger the vulnerability until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.