What is the severity of CVE-2024-49142?

CVE-2024-49142 has been classified as a remote code execution vulnerability, posing a significant risk to affected Microsoft Access and Office products.

How do I fix CVE-2024-49142?

To fix CVE-2024-49142, ensure that you apply the latest security updates provided by Microsoft for the affected products.

Which Microsoft products are affected by CVE-2024-49142?

CVE-2024-49142 affects Microsoft Office LTSC 2021, Office LTSC 2024, Office 2019, and Access 2016 among others.

What kind of attacks can CVE-2024-49142 enable?

An attacker exploiting CVE-2024-49142 may execute arbitrary code on a vulnerable system, potentially leading to system compromise.

Is there a known exploit for CVE-2024-49142?

As of now, details regarding a specific exploit for CVE-2024-49142 have not been publicly disclosed, but it is advisable to apply security patches promptly.

Vulnerability/
CVE-2024-49142

high

7.8

CWE

416

10/12/2024

11/3/2025

CVE-2024-49142: Microsoft Access Remote Code Execution Vulnerability

First published: Tue Dec 10 2024(Updated: )

Microsoft Access Remote Code Execution Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Access		fix available externally
Microsoft Access		fix available externally
Microsoft Office 2019 for Mac		fix available externally
Microsoft Office LTSC 2021		fix available externally
Microsoft Office 2019 for Mac		fix available externally
Microsoft Office LTSC 2021		fix available externally
Microsoft Office LTSC 2024		fix available externally
Microsoft Office LTSC 2024		fix available externally
Microsoft 365 Apps for Enterprise		fix available externally
Microsoft 365 Apps for Enterprise		fix available externally
Microsoft 365 Apps for enterprise
Microsoft Access 2010	=2016
Microsoft Office	=2019
Microsoft Office Long Term Servicing Channel	=2021
Microsoft Office Long Term Servicing Channel	=2024

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49142 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2024-49142?
CVE-2024-49142 has been classified as a remote code execution vulnerability, posing a significant risk to affected Microsoft Access and Office products.
How do I fix CVE-2024-49142?
To fix CVE-2024-49142, ensure that you apply the latest security updates provided by Microsoft for the affected products.
Which Microsoft products are affected by CVE-2024-49142?
CVE-2024-49142 affects Microsoft Office LTSC 2021, Office LTSC 2024, Office 2019, and Access 2016 among others.
What kind of attacks can CVE-2024-49142 enable?
An attacker exploiting CVE-2024-49142 may execute arbitrary code on a vulnerable system, potentially leading to system compromise.
Is there a known exploit for CVE-2024-49142?
As of now, details regarding a specific exploit for CVE-2024-49142 have not been publicly disclosed, but it is advisable to apply security patches promptly.

collector/msrc-cve
source/Microsoft
agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
collector/msrc
agent/author
agent/severity
agent/weakness
agent/event
agent/trending
agent/source
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
vendor/microsoft
canonical/microsoft access
canonical/microsoft office 2019 for mac
canonical/microsoft office ltsc 2021
canonical/microsoft office ltsc 2024
canonical/microsoft 365 apps for enterprise
canonical/microsoft access 2010
version/microsoft access 2010/2016
canonical/microsoft office
version/microsoft office/2019
canonical/microsoft office long term servicing channel
version/microsoft office long term servicing channel/2021
version/microsoft office long term servicing channel/2024