← Back

CVE-2024-38226

nvd nist
Published: Sep 10, 2024Modified: Oct 28, 2025CISA KEV

JSON object

Loading...
7.3
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.3 / Impact: 5.9
Source: secure@microsoft.com (Secondary)

Description

Microsoft Publisher Security Feature Bypass Vulnerability

Affected (6)

Microsoft
3 products
Office 2019
Office Long Term Servicing Channel
Publisher
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Office 2019
All versions
Office 2019
All versions
Microsoft
Office Long Term Servicing Channel
Version 2021
Office Long Term Servicing Channel
Version 2021
Microsoft
Publisher
Version 2016
Publisher
Version 2016

Related CWEs

CWE-693
Protection Mechanism Failure
The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

References (2)

Source: secure@microsoft.com
PatchVendor Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource

Timeline

No history available yet.