⚠️ CISA Known Exploited Vulnerability
Active ThreatThis vulnerability is listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. Active exploitation has been observed in the wild. This poses significant risk to federal enterprises and should be prioritized for immediate patching.
CVE-2024-38226
High CISA KEVVulnerability Description
Microsoft Publisher Security Feature Bypass Vulnerability
CVSS Metrics
Common Vulnerability Scoring System
Vector String:
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Known Affected Software
3 configuration(s) from 1 vendor(s)
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:x86:*
cpe:2.3:a:microsoft:publisher:2016:*:*:*:*:*:x64:*
cpe:2.3:a:microsoft:office_2019:-:*:*:*:*:*:x64:*
2024-Sep-CVE-2024-38226
CVE-2024-38226: Microsoft Publisher Security Feature Bypass Vulnerability
Severity Details
CISA KEV Status
Listed in CISA's Known Exploited Vulnerabilities catalog
Key Information
- Published Date
- September 10, 2024
