CVE-2024-39804

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Dec 18, 2024

CWE ID 347

Summary

CVE-2024-39804: A new vulnerability has been identified in Microsoft PowerPoint 16.83 for macOS. This issue involves a library injection vulnerability, enabling a specially crafted library to bypass PowerPoint's access privileges. Malicious applications could exploit this flaw by injecting a library and launching the program, gaining unauthorized access to the vulnerable application's permissions. Users are advised to update their software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Office Powerpoint

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xiMEv3
https://www.cve.org/CVERecord?id=CVE-2024-39804
https://nvd.nist.gov/vuln/detail/CVE-2024-39804

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners