What is vulnerability CVE-2023-33149?

Vulnerability CVE-2023-33149 is a Microsoft Office Graphics Remote Code Execution Vulnerability.

What is the severity of vulnerability CVE-2023-33149?

The severity of vulnerability CVE-2023-33149 is high, with a severity value of 7.

Which software is affected by vulnerability CVE-2023-33149?

The following software products are affected by vulnerability CVE-2023-33149: Microsoft Office LTSC for Mac 2021, Microsoft Office 2019 for 32-bit editions, Microsoft 365 Apps for Enterprise (x86_64), Microsoft Office LTSC 2021 for 32-bit editions, Microsoft Office LTSC 2021 for 64-bit editions, Microsoft Office 2019 for 64-bit editions, Microsoft 365 Apps for Enterprise (x86), Microsoft Office 2019 for Mac, Microsoft Office 2013 RT (SP1), Microsoft Office 2013 (SP1) 64-bit, Microsoft Office 2016 (32-bit), Microsoft Office 2016 (64-bit), Microsoft Office 2013 (32-bit, SP1).

How do I fix vulnerability CVE-2023-33149 for Microsoft Office LTSC for Mac 2021?

To fix vulnerability CVE-2023-33149 for Microsoft Office LTSC for Mac 2021, apply the remedy provided by Microsoft at the following URL: https://go.microsoft.com/fwlink/p/?linkid=831049

How do I fix vulnerability CVE-2023-33149 for Microsoft Office 2019 for 32-bit editions?

To fix vulnerability CVE-2023-33149 for Microsoft Office 2019 for 32-bit editions, apply the remedy provided by Microsoft at the following URL: https://docs.microsoft.com/en-us/officeupdates/microsoft365-apps-security-updates

Vulnerability/
CVE-2023-33149

high

7.8

CWE

11/7/2023

14/12/2023

CVE-2023-33149: Microsoft Office Graphics Remote Code Execution Vulnerability

First published: Tue Jul 11 2023(Updated: )

Microsoft Office Graphics Remote Code Execution Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Office 2019 for Mac		fix available externally
Microsoft 365 Apps for Enterprise		fix available externally
Microsoft Office LTSC 2021 for 32-bit editions		fix available externally
Microsoft Office 2013		fix available externally fix available externally
Microsoft Office 2019 for 32-bit editions		fix available externally
Microsoft Office LTSC for Mac 2021		fix available externally
Microsoft Office 2013 RT		fix available externally fix available externally
Microsoft Office 2013		fix available externally fix available externally
Microsoft Office 2016		fix available externally fix available externally
Microsoft Office 2019 for 64-bit editions		fix available externally
Microsoft Office LTSC 2021 for 64-bit editions		fix available externally
Microsoft Office 2016		fix available externally fix available externally
Microsoft 365 Apps for Enterprise		fix available externally
Microsoft 365 Apps
Microsoft 365 Apps
Microsoft Office	=2013-sp1
Microsoft Office	=2013-sp1
Microsoft Office	=2013-sp1
Microsoft Office	=2016
Microsoft Office	=2016
Microsoft Office	=2019
Microsoft Office	=2019
Microsoft Office	=2019
Microsoft Office	=2021
Microsoft Office	=2021
Microsoft Office	=2021

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33149

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33149 (Advisory)

Frequently Asked Questions

What is vulnerability CVE-2023-33149?
Vulnerability CVE-2023-33149 is a Microsoft Office Graphics Remote Code Execution Vulnerability.
What is the severity of vulnerability CVE-2023-33149?
The severity of vulnerability CVE-2023-33149 is high, with a severity value of 7.
Which software is affected by vulnerability CVE-2023-33149?
The following software products are affected by vulnerability CVE-2023-33149: Microsoft Office LTSC for Mac 2021, Microsoft Office 2019 for 32-bit editions, Microsoft 365 Apps for Enterprise (x86_64), Microsoft Office LTSC 2021 for 32-bit editions, Microsoft Office LTSC 2021 for 64-bit editions, Microsoft Office 2019 for 64-bit editions, Microsoft 365 Apps for Enterprise (x86), Microsoft Office 2019 for Mac, Microsoft Office 2013 RT (SP1), Microsoft Office 2013 (SP1) 64-bit, Microsoft Office 2016 (32-bit), Microsoft Office 2016 (64-bit), Microsoft Office 2013 (32-bit, SP1).
How do I fix vulnerability CVE-2023-33149 for Microsoft Office LTSC for Mac 2021?
To fix vulnerability CVE-2023-33149 for Microsoft Office LTSC for Mac 2021, apply the remedy provided by Microsoft at the following URL: https://go.microsoft.com/fwlink/p/?linkid=831049
How do I fix vulnerability CVE-2023-33149 for Microsoft Office 2019 for 32-bit editions?
To fix vulnerability CVE-2023-33149 for Microsoft Office 2019 for 32-bit editions, apply the remedy provided by Microsoft at the following URL: https://docs.microsoft.com/en-us/officeupdates/microsoft365-apps-security-updates

collector/msrc
collector/msrc-cve
collector/mitre-cve
agent/title
agent/severity
agent/references
agent/weakness
agent/author
agent/type
agent/event
agent/description
agent/softwarecombine
agent/remedy
agent/last-modified-date
agent/first-publish-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-latest
vendor/microsoft
canonical/microsoft office 2019 for mac
canonical/microsoft 365 apps for enterprise
canonical/microsoft office ltsc 2021 for 32-bit editions
canonical/microsoft office 2013
canonical/microsoft office 2019 for 32-bit editions
canonical/microsoft office ltsc for mac 2021
canonical/microsoft office 2013 rt
canonical/microsoft office 2016
canonical/microsoft office 2019 for 64-bit editions
canonical/microsoft office ltsc 2021 for 64-bit editions
canonical/microsoft 365 apps
canonical/microsoft office
version/microsoft office/2013-sp1
version/microsoft office/2016
version/microsoft office/2019
version/microsoft office/2021