CVE-2023-21737

Name of the Vulnerable Software and Affected Versions Microsoft Office Visio (affected versions not specified)

Description The issue is related to insufficient input validation in Microsoft Office Visio, which can be exploited by remote attackers to execute arbitrary code. This affects not just Visio but also other Microsoft Office and 365 Apps for Enterprise packages. The exploitation is linked to a heap-based buffer overflow during the parsing of DWG files.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.