Site icon API Security Blog

Security Updates for Microsoft Excel Products C2R (May 2021)

The Microsoft Excel Products are missing security updates.
It is, therefore, affected by multiple vulnerabilities:

– A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. (CVE-2021-31175, CVE-2021-31177, CVE-2021-31179)

– An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. (CVE-2021-31174, CVE-2021-31178)Read More

Exit mobile version