CVE-2024-43504

Name of the Vulnerable Software and Affected Versions Microsoft Excel (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Office Long Term Servicing Channel (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in Microsoft Office and Microsoft 365 Apps for Enterprise packages. This vulnerability can be exploited to execute arbitrary code, allowing an attacker to run malicious code on the affected system. The vulnerability affects Microsoft Excel, enabling remote attackers to execute arbitrary code and impact the system.

Recommendations For Microsoft Excel, update to a version that includes the fix for this issue. For Microsoft 365 Apps for Enterprise, apply the necessary patch or update to resolve the vulnerability. For Microsoft Office, install the latest security updates to mitigate the risk. For Microsoft Office Long Term Servicing Channel, ensure that all security patches are up to date to address the issue. As a temporary workaround, consider restricting access to sensitive features in Microsoft Excel and Office until a patch is available.