ZDI-22-1286 - Microsoft Powerpoint, Microsoft Office Long Term Servicing Channel and Microsoft Office

September 19, 2022

Critical 7.8

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Affected software

Microsoft Powerpoint

Microsoft Office Long Term Servicing Channel

Microsoft Office

Microsoft 365 Apps

Reference links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-37962
http://www.zerodayinitiative.com/advisories/ZDI-22-1286/

ZDI-22-1286 - Microsoft Powerpoint, Microsoft Office Long Term Servicing Channel and Microsoft Office

Affected software

Reference links

Get alerted to vulnerabilities in your software