vulnerability

Microsoft Office: CVE-2019-1109: Microsoft Office Spoofing Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:N/C:P/I:P/A:N)	Jul 15, 2019	Aug 13, 2020	Jun 26, 2023

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:N)

Published

Jul 15, 2019

Added

Aug 13, 2020

Modified

Jun 26, 2023

Description

A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office documents.An attacker who successfully exploited this vulnerability could read or write information in Office documents.The security update addresses the vulnerability by correcting the way that Microsoft Office Javascript verifies trusted web pages., aka 'Microsoft Office Spoofing Vulnerability'.

Solutions

microsoft-office_2016-kb4464534office-click-to-run-upgrade-latest

References

CVE-2019-1109
https://attackerkb.com/topics/CVE-2019-1109
URL-https://support.microsoft.com/help/4464534

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today