CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
CVE-2023-21716 | Microsoft Word Remote Code Execution Vulnerability | Microsoft Office | Critical | 27-02-2023 |
Technical Information
A remote code execution vulnerability where an unauthenticated attacker could send a malicious e-mail containing an RTF payload that would allow them to gain access to execute commands within the application used to open the malicious file.
Further information on this vulnerability is available at : CVE-2023-21716
Affected Software
Microsoft Office LTSC for Mac 2021,Microsoft Office LTSC 2021 for 32-bit editions,
Microsoft SharePoint Server Subscription Edition,
Microsoft Office LTSC 2021 for 64-bit editions,
Microsoft 365 Apps for Enterprise for 32-bit Systems,
SharePoint Server Subscription Edition Language Pack,
Microsoft Office Online Server,
Microsoft Office 2019 for Mac,
Microsoft 365 Apps for Enterprise for 64-bit Systems,
Microsoft SharePoint Enterprise Server 2016,
Microsoft SharePoint Enterprise Server 2013 Service Pack 1,
Microsoft SharePoint Server 2019,
Microsoft Word 2016 (64-bit edition),
Microsoft Word 2016 (32-bit edition),
Microsoft Office Web Apps Server 2013 Service Pack 1,
Microsoft SharePoint Foundation 2013 Service Pack 1,
Microsoft Word 2013 Service Pack 1 (32-bit editions),
Microsoft Word 2013 RT Service Pack 1,
Microsoft Word 2013 Service Pack 1 (64-bit editions)