Detections
Analytics

Security Updates for Microsoft Office Products (November 2022)

info Nessus Plugin ID 167117

Language:

Synopsis

The Microsoft Office Products are missing a security update.

Description

The Microsoft Office Products are missing a security update that provides enhanced security as a defense-in-depth measure. This update provides hardening around IRM-protected documents to ensure the trust-of-certificate chain.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Microsoft has released the following security updates to address this issue:
-KB3191875
 -KB3191869

For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update.

See Also

https://support.microsoft.com/en-us/help/3191875

https://support.microsoft.com/en-us/help/3191869

https://msrc.microsoft.com/update-guide/vulnerability/ADV220003

Plugin Details

Severity: Info

ID: 167117

File Name: smb_nt_ms22_nov_office.nasl

Version: 1.3

Type: local

Agent: windows

Published: 11/8/2022

Updated: 12/29/2022

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:microsoft:office

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Patch Publication Date: 11/8/2022

Vulnerability Publication Date: 11/8/2022

Reference Information

IAVA: 2022-A-0479-S

MSFT: MS22-3191869, MS22-3191875

MSKB: 3191869, 3191875