Rewterz Threat Advisory – CVE-2022-42920 – Apache Commons BCEL Vulnerability
November 9, 2022Rewterz Threat Advisory – CVE-2022-41123 – Microsoft Exchange Server Vulnerability
November 10, 2022Rewterz Threat Advisory – CVE-2022-42920 – Apache Commons BCEL Vulnerability
November 9, 2022Rewterz Threat Advisory – CVE-2022-41123 – Microsoft Exchange Server Vulnerability
November 10, 2022Severity
High
Analysis Summary
CVE-2022-41107
Microsoft Office could allow a remote attacker to execute arbitrary code on the system, caused by a flaw in the Graphics component. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
Code Execution
Indicators Of Compromise
CVE
- CVE-2022-41107
Affected Vendors
Microsoft
Affected Products
Microsoft Office 2019 x32
Microsoft Office 2019 x64
Microsoft Office 2019 Mac
Microsoft 365 Apps for Enterprise x32
Microsoft 365 Apps for Enterprise x64
Microsoft Office LTSC 2021 x32
Microsoft Office LTSC 2021 x64
Microsoft Office LTSC for Mac 2021
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.