logo

CVE-2023-21715 - Microsoft Office Publisher Security Feature Bypass Vulnerability

CVE-2023-21715

Microsoft | Office

  • Date Added:
  • 2023-02-14
  • Due Date:
  • 2023-03-07
Vulnerability Name

Microsoft Office Publisher Security Feature Bypass Vulnerability

Description

Microsoft Office Publisher contains a security feature bypass vulnerability that allows for a local, authenticated attack on a targeted system.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-21715; https://nvd.nist.gov/vuln/detail/CVE-2023-21715

Free security scan for your website