CVE-2021-38646
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
4.4%
p90
KEV
SÍ
28 mar 2022
Exploit Today
77
0-100
Publicado: — · Última mod.: —
4.0%EPSS · 30 días4.4%
2026-06-302026-07-17
Producto
Microsoft / Office
Vulnerabilidad
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Añadido a KEV
28 mar 2022
Remediar antes de
18 abr 2022
Uso conocido en ransomware
Sí
Descripción resumida
Microsoft Office Access Connectivity Engine contains an unspecified vulnerability which can allow for remote code execution.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2021-38646
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2017-11882—100.0%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2023-23397—99.9%
KEV—80Microsoft Office Outlook Privilege Escalation Vulnerability—CVE-2015-1641—99.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2018-0798—99.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2018-0802—99.8%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2017-8570—99.8%
KEV—80Microsoft Office Remote Code Execution Vulnerability—