CVE-2024-38226
7.3HIGHMicrosoft Publisher Security Feature Bypass Vulnerability
Publicado: 9/10/2024Atualizado: 10/28/2025
Vulnerabilidade Explorada Conhecida (CISA)
Microsoft Publisher contains a protection mechanism failure vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.
Ação Necessária:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Prazo:
2024-10-01
Descrição
Microsoft Publisher Security Feature Bypass Vulnerability
Análise IADesenvolvido por IA
Produtos Afetados
microsoftoffice_2019
-
microsoftoffice_2019
-
microsoftoffice_long_term_servicing_channel
2021
microsoftoffice_long_term_servicing_channel
2021
microsoftpublisher
2016
microsoftpublisher
2016
Referências
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38226PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38226US Government Resource