CVE-2023-21715
7.3HIGHMicrosoft Publisher Security Feature Bypass Vulnerability
Published: 2/14/2023Updated: 10/30/2025
CISA Known Exploited Vulnerability
Microsoft Office Publisher contains a security feature bypass vulnerability that allows for a local, authenticated attack on a targeted system.
Required Action:
Apply updates per vendor instructions.
Due Date:
2023-03-07
Description
Microsoft Publisher Security Feature Bypass Vulnerability
AI AnalysisPowered by AI
Affected Products
microsoft365_apps
-
References
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21715PatchVendor Advisory
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21715PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-21715US Government Resource