CVE-2024-38226
7.3HIGHMicrosoft Publisher Security Feature Bypass Vulnerability
Опубликовано: 9/10/2024Обновлено: 10/28/2025
Известная эксплуатируемая уязвимость CISA
Microsoft Publisher contains a protection mechanism failure vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.
Требуемое действие:
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Срок:
2024-10-01
Описание
Microsoft Publisher Security Feature Bypass Vulnerability
ИИ-АнализНа базе ИИ
Затронутые продукты
microsoftoffice_2019
-
microsoftoffice_2019
-
microsoftoffice_long_term_servicing_channel
2021
microsoftoffice_long_term_servicing_channel
2021
microsoftpublisher
2016
microsoftpublisher
2016
Ссылки
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38226PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-38226US Government Resource