CVE-2024-49031
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 12, 2024
Updated: Nov 13, 2024
CWE ID 126
Summary
CVE-2024-49031 is a newly disclosed remote code execution vulnerability affecting Microsoft Office. Maliciously crafted Graphics files can exploit this flaw, enabling attackers to execute arbitrary code on targets' systems. Successful exploitation could lead to significant security risks, including data theft, unauthorized system access, or further malware infections. Microsoft urges users to update their Office software to the latest patch as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share