Home

Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability for Office 2019 for 2108 Retail Version (14326.20404) (Online Installer)

Risk Information

Base Score
7.7
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
42.73%

CVE Information

Source CVE
CVE-2021-38646

Associated CVE
CVE-2021-38646
CVE-2021-38653
CVE-2021-38654
CVE-2021-38655
CVE-2021-38656
CVE-2021-38658
CVE-2021-38659
CVE-2021-38657
CVE-2021-38650

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
32138

Patch Description
Update for Office 2019 for 2108 Retail Version (14326.20404) (Online Installer)

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38646
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38650
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38655
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38658
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38653
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38654
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38656
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38657
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38659