CVE-2024-38226
7.3HIGHMicrosoft Publisher Security Feature Bypass Vulnerability
Veröffentlicht: 9/10/2024Aktualisiert: 10/28/2025
CISA Bekannte Ausgenutzte Schwachstelle
Microsoft Publisher contains a protection mechanism failure vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.
Erforderliche Maßnahme:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Fälligkeitsdatum:
2024-10-01
Beschreibung
Microsoft Publisher Security Feature Bypass Vulnerability
KI-AnalyseKI-gestützt
Betroffene Produkte
microsoftoffice_2019
-
microsoftoffice_2019
-
microsoftoffice_long_term_servicing_channel
2021
microsoftoffice_long_term_servicing_channel
2021
microsoftpublisher
2016
microsoftpublisher
2016
Referenzen
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38226PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38226US Government Resource