Microsoft Word Security Feature Bypass Vulnerability
CVE-2023-29335 Published on May 9, 2023

Microsoft Word Security Feature Bypass Vulnerability

Vendor Advisory NVD

Weakness Type

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Products Associated with CVE-2023-29335

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-29335 are published in these products:

Microsoft Windows Server 2012

Microsoft Windows Server 2016

Microsoft Windows Server 2008

Microsoft Windows Server 2022

Microsoft Windows 10

Microsoft Windows 11

Microsoft Windows 10 1507

Microsoft Word

Microsoft Office

Microsoft 365 Apps

Affected Versions

Microsoft Office 2019:

Version 19.0.0 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft 365 Apps for Enterprise:

Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Office LTSC 2021:

Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Word 2016:

Version 16.0.1 and below 16.0.5395.1000 is affected.

Microsoft Word 2013 Service Pack 1:

Version 15.0.1 and below 15.0.5553.1000 is affected.

Microsoft Word 2013 Service Pack 1:

Version 15.0.1 and below 15.0.5553.1000 is affected.

Exploit Probability

EPSS

0.35%

Percentile

56.65%