Actively exploited vulnerability

CVE-2017-0199: Microsoft Office and WordPad Remote Code Execution Vulnerability

Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.

CISA KEV source 3 Nov 2021 added 3 May 2022 remediation due

Affected product

Microsoft ยท Office and WordPad

Known ransomware use: Known

Required action

Follow the source advisory and validate exposure in your environment.

Apply updates per vendor instructions.

Related Yasna coverage

Recent reporting that mentions CVE-2017-0199.