

Rewterz Threat Advisory – Multiple Microsoft SQL Server Vulnerabilities
February 20, 2023
Rewterz Threat Alert – GandCrab or .CRAB Ransomware – Active IOCs
February 20, 2023
Rewterz Threat Advisory – Multiple Microsoft SQL Server Vulnerabilities
February 20, 2023
Rewterz Threat Alert – GandCrab or .CRAB Ransomware – Active IOCs
February 20, 2023Severity
Medium
Analysis Summary
CVE-2023-21714
Microsoft Office could allow a remote attacker to obtain sensitive information. By persuading a victim to open a specially crafted file, an attacker could exploit this vulnerability to obtain sensitive information from uninitialized memory and then use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-21714
Affected Vendors
Microsoft
Affected Products
- Microsoft Office LTSC 2021 x64
- Microsoft Office LTSC 2021 x32
- Microsoft 365 Apps for Enterprise x64
- Microsoft 365 Apps for Enterprise x32
Remediation
Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.