CVE-2022-23252
Description
Microsoft Office Information Disclosure Vulnerability
Risk Information
Base Score
5.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
0.344
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft Office Information Disclosure Vulnerability for Microsoft Office 2016 (KB3118335) 64-Bit Edition | Windows |
| Microsoft Office Information Disclosure Vulnerability for Microsoft Office 2016 (KB3118335) 32-Bit Edition | Windows |
| Microsoft Office Information Disclosure Vulnerability for Microsoft Office 2013 (KB3172514) 64-Bit Edition | Windows |
| Microsoft Office Information Disclosure Vulnerability for Microsoft Office 2013 (KB3172514) 32-Bit Edition | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x86 1808 of version(10383.20027) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x64 1808 of version(10383.20027) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x64 1808 of volume version(10383.20027) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x86 1808 of volume version(10383.20027) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for 1808 of Volume License Version (10383.20027) (Online Installer) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2108 (Build 14326.20784) (Online Installer) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Targeted Channel Version 2108 (Build 14326.20784) (Online Installer) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2108 of version(14326.20784) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2021 for x64 2108 of volume version(14332.20238) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2021 for x86 2108 of volume version(14332.20238) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2112 of version(14729.20322) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2112 (14729.20322) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x64 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x86 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x64 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x86 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel Version 2201 (Build 14827.20192) (Online Installer) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x64 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Business Current Channel for x86 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x64 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x86 2201 of version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x64 2201 Retail Version (14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2019 for x86 2201 Retail Version (14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2021 for x64 2201 of Retail Version(14827.20192) | Windows |
| Microsoft Office Visio Remote Code Execution Vulnerability for Office 2021 for x86 2201 of Retail Version(14827.20192) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-33116 | Security Update for Microsoft Office 2016 (KB3118335) 64-Bit Edition |
| PATCH-33117 | Security Update for Microsoft Office 2016 (KB3118335) 32-Bit Edition |
| PATCH-33143 | Update for Office 2019 for x86 1808 of version(10383.20027) |
| PATCH-33145 | Update for Office 2019 for x64 1808 of version(10383.20027) |
| PATCH-33186 | Update for Office 2019 for x64 1808 of volume version(10383.20027) |
| PATCH-33188 | Update for Office 2019 for x86 1808 of volume version(10383.20027) |
| PATCH-33201 | Update for Office 2019 for 1808 of Volume License Version (10383.20027) (Online Installer) |
| PATCH-33147 | Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20784) |
| PATCH-33149 | Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20784) |
| PATCH-33151 | Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20784) |
| PATCH-33153 | Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20784) |
| PATCH-33155 | Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2108 of version(14326.20784) |
| PATCH-33157 | Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2108 of version(14326.20784) |
| PATCH-33158 | Update for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2108 (Build 14326.20784) (Online Installer) |
| PATCH-33159 | Update for Microsoft 365 Apps for Enterprise Targeted Channel Version 2108 (Build 14326.20784) (Online Installer) |
| PATCH-33174 | Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20784) |
| PATCH-33176 | Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20784) |
| PATCH-33178 | Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20784) |
| PATCH-33180 | Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20784) |
| PATCH-33182 | Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2108 of version(14326.20784) |
| PATCH-33184 | Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2108 of version(14326.20784) |
| PATCH-33194 | Update for Office 2021 for x64 2108 of volume version(14332.20238) |
| PATCH-33196 | Update for Office 2021 for x86 2108 of volume version(14332.20238) |
| PATCH-33170 | Update for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2112 of version(14729.20322) |
| PATCH-33172 | Update for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2112 (14729.20322) |
| PATCH-33135 | Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2201 of version(14827.20192) |
| PATCH-33137 | Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2201 of version(14827.20192) |
| PATCH-33139 | Update for Microsoft 365 Apps for Business Current Channel for x64 2201 of version(14827.20192) |
| PATCH-33141 | Update for Microsoft 365 Apps for Business Current Channel for x86 2201 of version(14827.20192) |
| PATCH-33160 | Update for Microsoft 365 Apps for Enterprise Current Channel Version 2201 (Build 14827.20192) (Online Installer) |
| PATCH-33162 | Update for Microsoft 365 Apps for Business Current Channel for x64 2201 of version(14827.20192) |
| PATCH-33164 | Update for Microsoft 365 Apps for Business Current Channel for x86 2201 of version(14827.20192) |
| PATCH-33166 | Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2201 of version(14827.20192) |
| PATCH-33168 | Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2201 of version(14827.20192) |
| PATCH-33190 | Update for Office 2019 for x64 2201 Retail Version (14827.20192) |
| PATCH-33192 | Update for Office 2019 for x86 2201 Retail Version (14827.20192) |
| PATCH-33198 | Update for Office 2021 for x64 2201 of Retail Version(14827.20192) |
| PATCH-33200 | Update for Office 2021 for x86 2201 of Retail Version(14827.20192) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234