Microsoft Excel RCE Vulnerability
CVE-2024-30042 Published on May 14, 2024

Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability

Vendor Advisory NVD

Weakness Type

What is a Marshaling, Unmarshaling Vulnerability?

The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

CVE-2024-30042 has been classified to as a Marshaling, Unmarshaling vulnerability or weakness.

Products Associated with CVE-2024-30042

Want to know whenever a new CVE is published for Microsoft products? stack.watch will email you.

Microsoft Excel

Microsoft Office Online Server

Microsoft Office

Microsoft 365 Apps

Microsoft Office Long Term Servicing Channel

Affected Versions

Microsoft Office Online Server:

Version https://aka.ms/OfficeSecurityReleases and below 16.0.10410.20003 is affected.

Microsoft Office 2019:

Version 19.0.0 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft 365 Apps for Enterprise:

Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Office LTSC for Mac 2021:

Version 16.0.1 and below 16.85.24051214 is affected.

Microsoft Office LTSC 2021:

Version 16.0.1 and below https://aka.ms/OfficeSecurityReleases is affected.

Microsoft Excel 2016:

Version 16.0.0.0 and below 16.0.5448.1000 is affected.

Exploit Probability

EPSS

0.26%

Percentile

48.76%