Microsoft Office
ADV230003 — Microsoft Office Defense in Depth Update
Executive Summary
Microsoft has released an update for Microsoft Office that provides enhanced security as a defense in depth measure.
Overview
Moderate
MS Severity
Exploited
MS Exploit Status
Exploitation Detected
MS Exploit Likelihood
EPSS Score
No EPSS score available for this CVE.
View on FIRST.orgAffected Products
39 affected products
| Product | KB Article | Severity | Impact | Restart Required |
|---|---|---|---|---|
| Microsoft 365 Apps for Enterprise for 32-bit Systems | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft 365 Apps for Enterprise for 64-bit Systems | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft Excel 2013 RT Service Pack 1 | 5002451 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Excel 2013 Service Pack 1 (32-bit editions) | 5002451 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Excel 2013 Service Pack 1 (64-bit editions) | 5002451 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Excel 2016 (32-bit edition) | 5002463 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Excel 2016 (64-bit edition) | 5002463 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2013 RT Service Pack 1 | 5002439 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2013 Service Pack 1 (32-bit editions) | 5002439 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2013 Service Pack 1 (64-bit editions) | 5002439 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2016 (32-bit edition) | 5002465 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2016 (64-bit edition) | 5002465 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Office 2019 for 32-bit editions | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft Office 2019 for 64-bit editions | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft Office LTSC 2021 for 32-bit editions | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft Office LTSC 2021 for 64-bit editions | Click to Run (Security Update) |
Moderate | Defense in Depth | No |
| Microsoft PowerPoint 2013 RT Service Pack 1 | 5002399 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft PowerPoint 2013 Service Pack 1 (32-bit editions) | 5002399 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft PowerPoint 2013 Service Pack 1 (64-bit editions) | 5002399 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft PowerPoint 2016 (32-bit edition) | 4504720 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft PowerPoint 2016 (64-bit edition) | 4504720 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Project 2013 Service Pack 1 (32-bit editions) | 4484489 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Project 2013 Service Pack 1 (64-bit editions) | 4484489 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Project 2016 (32-bit edition) | 5002328 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Project 2016 (64-bit edition) | 5002328 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Publisher 2013 Service Pack 1 (32-bit editions) | 5002391 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Publisher 2013 Service Pack 1 (64-bit editions) | 5002391 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Publisher 2013 Service Pack 1 RT | 5002391 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Publisher 2016 (32-bit edition) | 5002462 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Publisher 2016 (64-bit edition) | 5002462 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Visio 2013 Service Pack 1 (32-bit editions) | 5002417 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Visio 2013 Service Pack 1 (64-bit editions) | 5002417 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Visio 2016 (32-bit edition) | 5002418 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Visio 2016 (64-bit edition) | 5002418 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Word 2013 RT Service Pack 1 | 5002445 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Word 2013 Service Pack 1 (32-bit editions) | 5002445 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Word 2013 Service Pack 1 (64-bit editions) | 5002445 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Word 2016 (32-bit edition) | 5002464 (Security Update) |
Moderate | Defense in Depth | Maybe |
| Microsoft Word 2016 (64-bit edition) | 5002464 (Security Update) |
Moderate | Defense in Depth | Maybe |
Patches
15 patches
| Article | Type | Restart |
|---|---|---|
Click to Run |
Security Update | No |
5002451 |
Security Update | Maybe |
5002463 |
Security Update | Maybe |
5002439 |
Security Update | Maybe |
5002465 |
Security Update | Maybe |
5002399 |
Security Update | Maybe |
4504720 |
Security Update | Maybe |
4484489 |
Security Update | Maybe |
5002328 |
Security Update | Maybe |
5002391 |
Security Update | Maybe |
5002462 |
Security Update | Maybe |
5002417 |
Security Update | Maybe |
5002418 |
Security Update | Maybe |
5002445 |
Security Update | Maybe |
5002464 |
Security Update | Maybe |
Known Exploits
No known exploits have been linked for this CVE yet. When available, exploit references will be sourced from public repositories and may be unverified, incomplete, or non-functional. Always review code carefully before use in any environment.
Acknowledgments
Microsoft Threat Intelligence, Tom Lancaster, Paul Rascagneres, Vlad Stolyarov, Clement Lecigne and Bahare Sabouri of Google’s Threat Analysis Group (TAG)
References
On This Page