CVE-2023-28285

HIGH

Microsoft 365 Apps - Use After Free

Title source: rule

Microsoft Office Remote Code Execution Vulnerability

exploitdb SUSPICIOUS

by nu11secur1ty · textremotemultiple

CVSS v3 7.8

EPSS 0.0157

EPSS Percentile 81.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-416

Status published

Products (3)

microsoft/365_apps

microsoft/office 2019

microsoft/office_long_term_servicing_channel 2021

Published Apr 11, 2023

Tracked Since Feb 18, 2026