CVE-2021-42292 – Microsoft / Multiple – Security Feature Bypass

November 10, 2021

CVE-2021-42292 is a security feature bypass vulnerability impacting multiple versions of Microsoft Excel. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was actively exploited in the wild.

Summary:

CVE-2021-42292 is a security feature bypass vulnerability impacting multiple versions of Microsoft Excel. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was actively exploited in the wild.

PoC Links(if available):

Microsoft exploitation information –
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-42292

Known Counter Measures:

Microsoft addressed the vulnerability in a security update.

Links to patches(if available)

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-42292

You may have missed

ransomhouse 1

RansomHouse Ransomware Victim: STERCH – INTERNATIONAL s[.]r[.]o[.]

April 24, 2024
ransomhouse 1

RansomHouse Ransomware Victim: Bank Pembangunan Daerah Banten Tbk PT

April 24, 2024
BianLian

BianLian Ransomware Victim: defi SOLUTIONS[.]

April 24, 2024
CISA Logo

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

April 24, 2024
CISA Logo

CISA: Joint Guidance on Deploying AI Systems Securely

April 24, 2024