First published: Tue Nov 12 2024(Updated: )
Microsoft Excel Remote Code Execution Vulnerability
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office Long Term Servicing Channel for Mac | ||
Microsoft Office Long Term Servicing Channel for Mac | ||
Microsoft Office 2019 for Mac | ||
Microsoft Office LTSC 2021 | ||
Microsoft Office 2019 for Mac | ||
Microsoft Office LTSC 2021 | ||
Microsoft Office LTSC 2024 | ||
Microsoft Office LTSC 2024 | ||
Microsoft 365 Apps for Enterprise | ||
Microsoft 365 Apps for Enterprise | ||
Microsoft 365 Apps for enterprise | ||
Microsoft Office Excel | =2016 | |
Microsoft Office | =2019 | |
Microsoft Office Long Term Servicing Channel | =2021 | |
Microsoft Office Long Term Servicing Channel for Mac | =2021 | |
Microsoft Office Long Term Servicing Channel | =2024 | |
Microsoft Office Long Term Servicing Channel for Mac | =2024 | |
Microsoft Excel | ||
Microsoft Excel |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-49028 has been rated as a high severity vulnerability due to its potential for remote code execution.
To fix CVE-2024-49028, apply the latest security updates provided by Microsoft for your affected version of Excel or Office.
CVE-2024-49028 affects multiple versions of Excel and Office including Excel 2016, Office LTSC 2021, and various editions of Office 2019 and 2024.
CVE-2024-49028 is classified as a remote code execution vulnerability allowing attackers to run arbitrary code on the victim's machine.
Currently, applying the appropriate security patches from Microsoft is the recommended action, as there are no known effective workarounds.