CVE-2023-32029
Microsoft Excel Remote Code Execution Vulnerability
In short
Microsoft Excel can execute malicious code when you open a specially crafted file, allowing an attacker to take control of your computer. This happens because Excel doesn't properly validate data before processing it.
Technical detail
Out-of-bounds read vulnerability in Microsoft Excel's parsing engine allows remote code execution through a maliciously crafted workbook file. An attacker can achieve code execution in the context of the user running Excel by exploiting improper memory bounds checking, requiring user interaction to open the malicious file.
Summary generated and translated by AI from the official description.
Microsoft Excel Remote Code Execution Vulnerability
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected products
Microsoft · Microsoft 365 Apps for EnterpriseMicrosoft · Microsoft Excel 2013 Service Pack 1Microsoft · Microsoft Excel 2016Microsoft · Microsoft Office 2019Microsoft · Microsoft Office 2019 for MacMicrosoft · Microsoft Office LTSC 2021Microsoft · Microsoft Office LTSC for Mac 2021Microsoft · Microsoft Office Online ServerWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →