First published: Tue Nov 08 2022(Updated: )
Microsoft Word Information Disclosure Vulnerability
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft 365 Apps for Enterprise | ||
Microsoft 365 Apps for Enterprise | ||
Microsoft Office 2019 for 32-bit editions | ||
Microsoft Office LTSC 2021 for 32-bit editions | ||
Microsoft Word 2013 RT | ||
Microsoft Office LTSC 2021 for 64-bit editions | ||
Microsoft Office 2019 for 64-bit editions | ||
Microsoft 365 Apps | ||
Microsoft Office | =2019 | |
Microsoft Office | =2021 | |
Microsoft Office Online Server | ||
Microsoft Office Web Apps Server | =2013-sp1 | |
Microsoft SharePoint Enterprise Server | =2013-sp1 | |
Microsoft SharePoint Enterprise Server | =2016 | |
Microsoft SharePoint Server | ||
Microsoft SharePoint Server | =2019 | |
Microsoft Word | =2013-sp1 | |
Microsoft Word | =2013-sp1 | |
Microsoft Word | =2016 | |
Microsoft Word 2013 | ||
Microsoft SharePoint Server Subscription Edition Language Pack | ||
Microsoft Word 2016 | ||
Microsoft Office Online Server | ||
Microsoft SharePoint Enterprise Server 2013 | ||
Microsoft SharePoint Server 2019 | ||
Microsoft SharePoint Enterprise Server 2016 | ||
Microsoft Office Web Apps Server 2013 | ||
Microsoft Word 2016 | ||
Microsoft SharePoint Server Subscription Edition | ||
Microsoft Word 2013 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The CVE ID of this vulnerability is CVE-2022-41103.
The severity level of CVE-2022-41103 is high (5.5).
The following software products are affected by CVE-2022-41103: Office LTSC 2021 for 32-bit editions, Office Web Apps Server 2013, 365 Apps for Enterprise, SharePoint Enterprise Server 2013, SharePoint Server 2019, Word 2013 RT, Office Online Server, Office 2019 for 32-bit editions, Word 2016, Office LTSC 2021 for 64-bit editions, Word 2016 (32-bit), SharePoint Server Subscription Edition, Word 2013 (32-bit), Office 2019 for 64-bit editions, SharePoint Enterprise Server 2016, 365 Apps for Enterprise (x86_64), SharePoint Server Subscription Edition Language Pack, and Word 2013 (64-bit).
To fix CVE-2022-41103, you should apply the relevant security updates provided by Microsoft for the affected software products. Please refer to the provided remedies and patches from Microsoft for each specific product.
You can find more information about CVE-2022-41103 on the Microsoft Security Response Center's website at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41103.