CVE-2021-40474

Name of the Vulnerable Software and Affected Versions Microsoft Excel (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Office (affected versions not specified)

Description The issue is related to the use of memory after it has been freed, which can be exploited by an attacker to execute arbitrary code using a specially crafted file. This can allow remote attackers to execute arbitrary code.

Recommendations For Microsoft Excel, consider disabling the use of files from untrusted sources until a fix is available. For Microsoft 365 Apps for Enterprise, restrict access to potentially malicious files to minimize the risk of exploitation. For Microsoft Office, avoid using files that may trigger the exploitation of this issue until the problem is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.