~/cve/CVE-2022-33631

pipeline liveDigest Docs

CVE-2022-33631

published 2022-08-09

CVE-2022-33631: Microsoft Excel Security Feature Bypass Vulnerability

high7.3CVSS 3.1

AVLACLPRLUIRSUCHIHAH

Microsoft Excel Security Feature Bypass Vulnerability

Affected

18 ranges

Vendor	Product	Version range	Fixed in
microsoft	excel	—	—
microsoft	excel	—	—
microsoft	microsoft_365_apps_for_enterprise	>= 16.0.1 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	microsoft_excel_2013_service_pack_1	>= 15.0.0.0 < 15.0.5475.1001	15.0.5475.1001
microsoft	microsoft_excel_2016	>= 16.0.0.0 < 16.0.14931.20612	16.0.14931.20612
microsoft	microsoft_office_2019	>= 19.0.0 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	microsoft_office_ltsc_2021	>= 16.0.1 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	office	—	—
microsoft	office_long_term_servicing_channel	—	—
msrc	microsoft_365_apps_for_enterprise_for_32-bit_systems	—	—
msrc	microsoft_365_apps_for_enterprise_for_64-bit_systems	—	—
msrc	microsoft_excel_2013_rt_service_pack_1	—	—
msrc	microsoft_excel_2013_service_pack_1	—	—
msrc	microsoft_excel_2016	—	—
msrc	microsoft_office_2019_for_32-bit_editions	—	—
msrc	microsoft_office_2019_for_64-bit_editions	—	—
msrc	microsoft_office_ltsc_2021_for_32-bit_editions	—	—
msrc	microsoft_office_ltsc_2021_for_64-bit_editions	—	—

CVSS provenance

nvdv3.17.3HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

osv7.8HIGH