CVE-2023-33137

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jun 14, 2023

Updated: May 29, 2024

CWE ID 415

Summary

CVE-2023-33137 is a remote code execution vulnerability affecting Microsoft Excel. Maliciously crafted Excel files can trigger the issue, enabling attackers to execute arbitrary code on vulnerable systems. Successful exploitation allows an attacker to gain the same user rights as the current user, potentially leading to significant data loss or system compromise. Users are advised to apply the available Microsoft patch or use appropriate security measures to prevent the exploitation of this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Office

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/roHK3C
https://www.cve.org/CVERecord?id=CVE-2023-33137
https://nvd.nist.gov/vuln/detail/CVE-2023-33137

Back to Vulnerability Database