Microsoft Word Info Disclosure via Malformed File
CVE-2022-41060 Published on November 9, 2022

Products Associated with CVE-2022-41060

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-41060 are published in these products:

Affected Versions

Microsoft SharePoint Server Subscription Edition Language Pack:

• Version 16.0.0 and below 16.0.15601.20238 is affected.

Microsoft Office LTSC 2021:

• Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft 365 Apps for Enterprise:

• Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Office Online Server:

• Version 16.0.1 and below 16.0.10392.20000 is affected.

Microsoft Office 2019:

• Version 19.0.0 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Word 2016:

• Version 16.0.1 and below 16.0.5369.1000 is affected.

Microsoft SharePoint Enterprise Server 2013 Service Pack 1:

• Version 15.0.0 and below 15.0.5501.1000 is affected.

Microsoft SharePoint Server 2019:

• Version 16.0.0 and below 16.0.10392.20000 is affected.

Microsoft SharePoint Enterprise Server 2016:

• Version 16.0.0 and below 16.0.5369.1000 is affected.

Microsoft Word 2013 Service Pack 1:

• Version 15.0.1 and below 15.0.5501.1000 is affected.

Microsoft Office Web Apps Server 2013 Service Pack 1:

• Version 15.0.1 and below 15.0.5501.1000 is affected.

Microsoft Word 2013 Service Pack 1:

• Version 15.0.1 and below 15.0.5501.1000 is affected.

Exploit Probability