CVE-2021-24070
published 2021-02-25CVE-2021-24070: Microsoft Excel Remote Code Execution Vulnerability
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Microsoft Excel Remote Code Execution Vulnerability
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | subversion | >= 0 < 1.13.0-3ubuntu0.1 | 1.13.0-3ubuntu0.1 |
| apache | subversion | >= 0 < 1.14.1-3ubuntu0.22.04.1 | 1.14.1-3ubuntu0.22.04.1 |
| microsoft | excel | — | — |
| microsoft | excel | — | — |
| microsoft | excel | — | — |
| microsoft | microsoft_365_apps_for_enterprise | >= 16.0.1 < https://aka.ms/OfficeSecurityReleases | https://aka.ms/OfficeSecurityReleases |
| microsoft | microsoft_excel_2010_service_pack_2 | >= 13.0.0.0 < publication | publication |
| microsoft | microsoft_excel_2013_service_pack_1 | >= 15.0.0.0 < publication | publication |
| microsoft | microsoft_excel_2016 | >= 16.0.0.0 < publication | publication |
| microsoft | microsoft_office_2019 | >= 19.0.0 < https://aka.ms/OfficeSecurityReleases | https://aka.ms/OfficeSecurityReleases |
| microsoft | microsoft_office_web_apps_server_2013_service_pack_1 | >= 15.0.1 < publication | publication |
| microsoft | office | — | — |
| microsoft | office_online_server | >= https://aka.ms/OfficeSecurityReleases < publication | publication |
| microsoft | office_web_apps | — | — |
| msrc | microsoft_365_apps_for_enterprise_for_32-bit_systems | — | — |
| msrc | microsoft_365_apps_for_enterprise_for_64-bit_systems | — | — |
| msrc | microsoft_excel_2010_service_pack_2 | — | — |
| msrc | microsoft_excel_2013_rt_service_pack_1 | — | — |
| msrc | microsoft_excel_2013_service_pack_1 | — | — |
| msrc | microsoft_excel_2016 | — | — |
| msrc | microsoft_office_2019_for_32-bit_editions | — | — |
| msrc | microsoft_office_2019_for_64-bit_editions | — | — |
| msrc | microsoft_office_web_apps_server_2013_service_pack_1 | — | — |
| msrc | office_online_server | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv4.3MEDIUM