CVE-2023-23396 — Uncontrolled Resource Consumption in Microsoft Office Online Server

CWE-400 — Uncontrolled Resource Consumption2 documents2 sources

Severity

6.5MEDIUMCNA

No vector

EPSS

8.2%

top 7.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

2

Microsoft Office Online Server Microsoft Office WEB Apps Server 2013 Service Pack 1

Timeline

PublishedMar 14

Description

Microsoft Excel Denial of Service Vulnerability Microsoft Excel Denial of Service Vulnerability

Affected Packages2 packages

▶CVEListV5microsoft/microsoft_office_web_apps_server_2013_service_pack_115.0.1 — 15.0.5537.1000

▶CVEListV5microsoft/microsoft_office_online_server16.0.1 — 16.0.10396.20000

🔴Vulnerability Details

1

CVEList

Microsoft Excel Denial of Service Vulnerability↗2023-03-14

▶

📋Vendor Advisories

1

Microsoft

Microsoft Excel Denial of Service Vulnerability↗2023-03-14

▶

CVE-2023-23396 — Uncontrolled Resource Consumption | cvebase