Home

CVE-2022-29107

Description

Microsoft Office Security Feature Bypass Vulnerability

Risk Information

Base Score
5.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
6.002

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x64 1808 of volume version(10386.20017)Windows
Update for Office 2019 for x64 1808 of volume version(10386.20017) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x86 1808 of volume version(10386.20017)Windows
Update for Office 2019 for x86 1808 of volume version(10386.20017) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x86 1808 of version(10386.20017)Windows
Update for Office 2019 for x86 1808 of version(10386.20017) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x64 1808 of version(10386.20017)Windows
Update for Office 2019 for x64 1808 of version(10386.20017) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for 1808 of Volume License Version (10386.20017) (Online Installer)Windows
Update for Office 2019 for 1808 of Volume License Version (10386.20017) (Online Installer) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962)Windows
Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2108 (Build 14326.20962) (Online Installer)Windows
Update for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2108 (Build 14326.20962) (Online Installer) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2021 for x64 2108 of volume version(14332.20303)Windows
Update for Office 2021 for x64 2108 of volume version(14332.20303) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2021 for x86 2108 of volume version(14332.20303)Windows
Update for Office 2021 for x86 2108 of volume version(14332.20303) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2202 of version(14931.20392)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2202 of version(14931.20392) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2202 of version(14931.20392)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2202 of version(14931.20392) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2202 of version(14931.20392)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2202 of version(14931.20392) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2202 of version(14931.20392)Windows
Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2202 of version(14931.20392) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Targeted Channel Version 2202 (Build 14931.20392) (Online Installer)Windows
Update for Microsoft 365 Apps for Enterprise Targeted Channel Version 2202 (Build 14931.20392) (Online Installer) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2203 of version(15028.20248)Windows
Update for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2203 of version(15028.20248) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2203 (15028.20248)Windows
Update for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2203 (15028.20248) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x64 2204 Retail Version (15128.20224)Windows
Update for Office 2019 for x64 2204 Retail Version (15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2019 for x86 2204 Retail Version (15128.20224)Windows
Update for Office 2019 for x86 2204 Retail Version (15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2021 for x64 2204 of Retail Version(15128.20224)Windows
Update for Office 2021 for x64 2204 of Retail Version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Office 2021 for x86 2204 of Retail Version(15128.20224)Windows
Update for Office 2021 for x86 2204 of Retail Version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224)Windows
Update for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft 365 Apps for Enterprise and Business Current Channel Version 2204 (Build 15128.20224) (Online Installer)Windows
Update for Microsoft 365 Apps for Enterprise and Business Current Channel Version 2204 (Build 15128.20224) (Online Installer) For Home EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Publisher 2013 (KB4484347) 64-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Publisher 2013 (KB4484347) 32-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Publisher 2016 (KB4493152) 32-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Publisher 2016 (KB4493152) 64-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Word 2016 (KB5002184) 64-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Word 2016 (KB5002184) 32-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Word 2013 (KB5002187) 32-Bit EditionWindows
Microsoft Office Security Feature Bypass Vulnerability for Microsoft Word 2013 (KB5002187) 64-Bit EditionWindows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-33788Update for Office 2019 for x64 1808 of volume version(10386.20017)
PATCH-33790Update for Office 2019 for x86 1808 of volume version(10386.20017)
PATCH-33812Update for Office 2019 for x86 1808 of version(10386.20017)
PATCH-33814Update for Office 2019 for x64 1808 of version(10386.20017)
PATCH-33830Update for Office 2019 for 1808 of Volume License Version (10386.20017) (Online Installer)
PATCH-33776Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962)
PATCH-33778Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962)
PATCH-33780Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962)
PATCH-33782Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962)
PATCH-33816Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x64 2108 of version(14326.20962)
PATCH-33818Update for Microsoft 365 Apps for Enterprise Semi Annual Channel for x86 2108 of version(14326.20962)
PATCH-33820Update for Microsoft 365 Apps for Business Semi Annual Channel for x64 2108 of version(14326.20962)
PATCH-33822Update for Microsoft 365 Apps for Business Semi Annual Channel for x86 2108 of version(14326.20962)
PATCH-33828Update for Microsoft 365 Apps for Enterprise Semi-Annual Channel Version 2108 (Build 14326.20962) (Online Installer)
PATCH-33796Update for Office 2021 for x64 2108 of volume version(14332.20303)
PATCH-33798Update for Office 2021 for x86 2108 of volume version(14332.20303)
PATCH-33784Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x64 2202 of version(14931.20392)
PATCH-33786Update for Microsoft 365 Apps for Enterprise Semi Annual Preview Channel for x86 2202 of version(14931.20392)
PATCH-33824Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x64 2202 of version(14931.20392)
PATCH-33826Update for Microsoft 365 Apps for Enterprise Semi Annual Targeted Channel for x86 2202 of version(14931.20392)
PATCH-33829Update for Microsoft 365 Apps for Enterprise Targeted Channel Version 2202 (Build 14931.20392) (Online Installer)
PATCH-33772Update for Microsoft 365 Apps for Monthly Enterprise Channel for x64 2203 of version(15028.20248)
PATCH-33774Update for Microsoft 365 Apps for Monthly Enterprise Channel for x86 version 2203 (15028.20248)
PATCH-33764Update for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224)
PATCH-33766Update for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224)
PATCH-33768Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224)
PATCH-33770Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224)
PATCH-33792Update for Office 2019 for x64 2204 Retail Version (15128.20224)
PATCH-33794Update for Office 2019 for x86 2204 Retail Version (15128.20224)
PATCH-33800Update for Office 2021 for x64 2204 of Retail Version(15128.20224)
PATCH-33802Update for Office 2021 for x86 2204 of Retail Version(15128.20224)
PATCH-33804Update for Microsoft 365 Apps for Enterprise Current Channel for x64 2204 of version(15128.20224)
PATCH-33806Update for Microsoft 365 Apps for Enterprise Current Channel for x86 2204 of version(15128.20224)
PATCH-33808Update for Microsoft 365 Apps for Business Current Channel for x64 2204 of version(15128.20224)
PATCH-33810Update for Microsoft 365 Apps for Business Current Channel for x86 2204 of version(15128.20224)
PATCH-33827Update for Microsoft 365 Apps for Enterprise and Business Current Channel Version 2204 (Build 15128.20224) (Online Installer)
PATCH-33751Security Update for Microsoft Publisher 2013 (KB4484347) 64-Bit Edition
PATCH-33752Security Update for Microsoft Publisher 2013 (KB4484347) 32-Bit Edition
PATCH-33753Security Update for Microsoft Publisher 2016 (KB4493152) 32-Bit Edition
PATCH-33754Security Update for Microsoft Publisher 2016 (KB4493152) 64-Bit Edition
PATCH-33761Security Update for Microsoft Word 2016 (KB5002184) 64-Bit Edition
PATCH-33762Security Update for Microsoft Word 2016 (KB5002184) 32-Bit Edition
PATCH-33759Security Update for Microsoft Word 2013 (KB5002187) 32-Bit Edition
PATCH-33760Security Update for Microsoft Word 2013 (KB5002187) 64-Bit Edition

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234