Mirage News
Mirage News
National
 Date Time

Critical vulnerability present in certain versions of Microsoft Excel

Australian Cyber Security Centre

Background /What has happened?

A vulnerability (CVE-2021-42292) has been identified in locally installed versions of Microsoft Excel which allows a cyber actor to bypass a key security control. A cyber actor could use a malicious Microsoft Excel spreadsheet to exploit this vulnerability. This malicious document would then likely be used as part of a spearphishing campaign.

There is no indication that the Microsoft hosted Office365 Excel product is affected.

Microsoft has identified that this vulnerability is currently being exploited.

Mitigation / How do I stay secure?

Australian organisations and individuals who utilise Microsoft Excel Sitecore XP should consult the Microsoft security advisory for a list of affected Excel versions. Australian organisations and individuals should ensure that the available security update is applied as soon as possible.

Assistance / Where can I go for help?

/Public Release. This material from the originating organization/author(s) might be of the point-in-time nature, and edited for clarity, style and length. Mirage.News does not take institutional positions or sides, and all views, positions, and conclusions expressed herein are solely those of the author(s).View in full here.
Tags: , , , , , , ,

You might also like

Fascinating Cryptofauna World: Hidden Creatures Among Us
Telepathy and Technology: Is Mind Reading Possible?
Perfect Pet Match: Finding Your Ideal Companion
Diatoms: Microscopic Architects of the Sea
The Psychology Behind Hoarding Behavior
Innovative Hacks to Boost Your Home's Energy Efficiency