Microsoft Office 產品 C2R 的安全性更新 (2022 年 11 月)

high Nessus Plugin ID 168224

版本 1.5

Sep 20, 2023, 4:09 PM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available")

Plugin Feed: 202309201609

版本 1.4

Dec 15, 2022, 4:16 PM

  • IAVM reference

Plugin Feed: 202212151616

版本 1.3

Dec 14, 2022, 3:47 PM

  • Detection (Updated channel constraints)

Plugin Feed: 202212141547

版本 1.2

Nov 29, 2022, 4:20 PM

  • CVSS metrics ("CVSSv2 score" changed from "6.8" to "7.2")
  • CVSS metrics ("CVSSv2 vector" changed from "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P" to "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C")
  • CVSSv2 severity (based on CVE-2022-41107, severity increased from "Medium" to "High")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "False")
  • Exploit attributes ("Exploitability ease" set to "No known exploits are available")

Plugin Feed: 202211291620

版本 1.1

Nov 28, 2022, 9:45 PM

  • New

Plugin Feed: 202211282145

* Changelogs are generally available for changes made after Nov 1, 2022