CVE-2023-36884: Windows Search Remote Code Execution Vulnerability

First published: Tue Jul 11 2023(Updated: )

Microsoft is investigating reports of a series of remote code execution vulnerabilities impacting Windows and Office products. Microsoft is aware of targeted attacks that attempt to exploit these vulnerabilities by using specially-crafted Microsoft Office documents. An attacker could create a specially crafted Microsoft Office document that enables them to perform remote code execution in the context of the victim. However, an attacker would have to convince the victim to open the malicious file. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This might include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs. Please see the Microsoft Threat Intelligence Blog https://aka.ms/Storm-0978  Entry for important information about steps you can take to protect your system from this vulnerability. This CVE will be updated with new information and links to security updates when they become available.

Credit: secure@microsoft.com secure@microsoft.com secure@microsoft.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/msrc
• collector/msrc-cve
• agent/type
• agent/first-publish-date
• exploited/true
• source/Microsoft
• agent/remedy
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• agent/title
• collector/nvd-index
• collector/nvd-latest
• agent/severity
• agent/weakness
• agent/description
• ransomware/true
• collector/cisa-known-exploited
• source/CISA
• agent/softwarecombine
• agent/author
• collector/bleeping-computer
• source/BleepingComputer
• alias/CVE-2023-36884
• alias/CVE-2024-9680
• alias/CVE-2024-49039
• collector/the-register
• source/The Register
• alias/CVE-2023-28461
• agent/references
• agent/event
• agent/tags
• agent/trending
• collector/mitre-cve
• source/MITRE
• collector/nvd-api
• source/NVD
• agent/last-modified-date
• collector/nvd-cve
• agent/source
• vendor/microsoft
• canonical/microsoft word 2016
• canonical/microsoft word 2013
• canonical/microsoft office 2019 for 32-bit editions
• canonical/microsoft office 2019 for 64-bit editions
• canonical/microsoft office ltsc 2021 for 32-bit editions
• canonical/microsoft office ltsc 2021 for 64-bit editions
• canonical/microsoft windows 11
• version/microsoft windows 11/22h2
• version/microsoft windows 11/21h2
• canonical/microsoft windows server 2022
• canonical/microsoft windows server 2019
• canonical/microsoft windows 10
• version/microsoft windows 10/1809
• version/microsoft windows 10/22h2
• version/microsoft windows 10/21h2
• canonical/microsoft windows server 2008 r2
• canonical/microsoft windows server 2008
• canonical/microsoft windows server 2012
• canonical/microsoft windows server 2012 r2
• version/microsoft windows 10/1607
• canonical/microsoft windows server 2016
• canonical/microsoft office
• version/microsoft office/2019
• version/microsoft office/2021
• canonical/microsoft word
• version/microsoft word/2013-sp1
• version/microsoft word/2016
• canonical/microsoft windows 10 1507
• canonical/microsoft windows 10 1607
• canonical/microsoft windows 10 1809
• canonical/microsoft windows 10 21h2
• canonical/microsoft windows 10 22h2
• canonical/microsoft windows 11 21h2
• version/microsoft windows server 2008/sp2
• version/microsoft windows server 2008/r2-sp1
• version/microsoft windows server 2012/r2
• canonical/microsoft windows
• canonical/microsoft windows 11 22h2
• version/microsoft windows server 2016/10.0.14393.6614