CVE-2022-22716 - K7 Labs

<< Back

CVE Number	Vulnerability	Product	Severity	Date
CVE-2022-22716	Microsoft Excel Information Disclosure Vulnerability	Microsoft 365	Important	15-02-2022

Technical Information

Brief overview of the risk:

This is an Information Disclosure Vulnerability in Microsoft Excel. An attacker who successfully exploits this vulnerability can view uninitialized memory.

Further information on this vulnerability is available at : CVE-2022-22716

Affected Software

Microsoft SharePoint Enterprise Server 2013 Service Pack 1,
Microsoft Office 2019 for 32-bit editions,
Microsoft Office 2019 for 64-bit editions,
Microsoft Office 2019 for Mac,
Microsoft Office Online Server,
Microsoft 365 Apps for Enterprise for 32-bit Systems,
Microsoft 365 Apps for Enterprise for 64-bit Systems,
Microsoft Office LTSC for Mac 2021,
Microsoft Office LTSC 2021 for 64-bit editions,
Microsoft Office LTSC 2021 for 32-bit editions,
Microsoft Excel 2016 (32-bit edition),
Microsoft Excel 2016 (64-bit edition),
Microsoft Excel 2013 RT Service Pack 1,
Microsoft Excel 2013 Service Pack 1 (32-bit editions),
Microsoft Excel 2013 Service Pack 1 (64-bit editions),
Microsoft Office Web Apps Server 2013 Service Pack 1