CVE-2024-38226
7.3HIGHMicrosoft Publisher Security Feature Bypass Vulnerability
Publicado: 9/10/2024Actualizado: 10/28/2025
Vulnerabilidad Explotada Conocida (CISA)
Microsoft Publisher contains a protection mechanism failure vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.
Acción Requerida:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Fecha Límite:
2024-10-01
Descripción
Microsoft Publisher Security Feature Bypass Vulnerability
Análisis IAImpulsado por IA
Productos Afectados
microsoftoffice_2019
-
microsoftoffice_2019
-
microsoftoffice_long_term_servicing_channel
2021
microsoftoffice_long_term_servicing_channel
2021
microsoftpublisher
2016
microsoftpublisher
2016
Referencias
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38226PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38226US Government Resource