CVE-2023-41764Improper Verification of Cryptographic Signature in Microsoft 365 Apps FOR Enterprise

CWE-347Improper Verification of Cryptographic Signature2 documents2 sources
Severity
5.5MEDIUMCNA
No vector
EPSS
0.1%
top 72.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Microsoft 365 Apps FOR EnterpriseMicrosoft Office 2013 Service Pack 1Microsoft Office 2016+2 more
Timeline
PublishedSep 12

Description

Microsoft Office Spoofing Vulnerability Microsoft Office Spoofing Vulnerability

Affected Packages5 packages

CVEListV5microsoft/microsoft_office_201616.0.016.0.5413.1000
CVEListV5microsoft/microsoft_office_201919.0.0https://aka.ms/OfficeSecurityReleases
CVEListV5microsoft/microsoft_office_ltsc_202116.0.1https://aka.ms/OfficeSecurityReleases
CVEListV5microsoft/microsoft_office_2013_service_pack_115.0.015.0.5589.1000
CVEListV5microsoft/microsoft_365_apps_for_enterprise16.0.1https://aka.ms/OfficeSecurityReleases

🔴Vulnerability Details

1
CVEList
Microsoft Office Spoofing Vulnerability2023-09-12

📋Vendor Advisories

1
Microsoft
Microsoft Office Spoofing Vulnerability2023-09-12
CVE-2023-41764 — Microsoft vulnerability | cvebase