PT-2023-5087 · Microsoft · Office

Rocco Calvi

+1

·

Published

2023-08-08

·

Updated

2024-05-29

·

CVE-2023-35371

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified)
Description The issue is related to insufficient input validation in Microsoft Office, which can allow an attacker to execute arbitrary code.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-415

Related Identifiers

BDU:2023-05647
CVE-2023-35371

Affected Products

Office