CVE-2024-38200

high-risk

Published 2024-08-12

Microsoft Office Spoofing Vulnerability

Do I need to act?

55.7% chance of exploitation in next 30 days

EPSS score — higher than 44% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

52113

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

365 Apps

Office

Office Long Term Servicing Channel

Microsoft

Patch https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38200

/ 100

high-risk

Severity 24/34 · High

Exploitability 18/34 · Moderate

Exposure 14/34 · Moderate