Microsoft Project Remote Code Execution Vulnerability
History

Fri, 16 Aug 2024 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft project 2016
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:microsoft:project_2016:*:*:*:*:*:*:*:*
Vendors & Products Microsoft project 2016

Wed, 14 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 13 Aug 2024 23:30:00 +0000

Type Values Removed Values Added
Metrics kev

{'dateAdded': '2024-08-13'}


Tue, 13 Aug 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 13 Aug 2024 17:45:00 +0000

Type Values Removed Values Added
Description Microsoft Project Remote Code Execution Vulnerability
Title Microsoft Project Remote Code Execution Vulnerability
First Time appeared Microsoft
Microsoft 365 Apps
Microsoft office
Microsoft office Long Term Servicing Channel
Microsoft project
Weaknesses CWE-20
CPEs cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*
cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:project:2016:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft 365 Apps
Microsoft office
Microsoft office Long Term Servicing Channel
Microsoft project
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C'}


cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2024-08-13T17:30:31.741Z

Updated: 2024-10-16T01:53:51.581Z

Reserved: 2024-06-11T22:36:08.217Z

Link: CVE-2024-38189

cve-icon Vulnrichment

Updated: 2024-08-13T17:53:56.632Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-13T18:15:27.733

Modified: 2024-08-16T15:11:42.940

Link: CVE-2024-38189

cve-icon Redhat

No data.