← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-38646 — Actively Exploited: Office (Microsoft)

Microsoft Office Access Connectivity Engine contains an unspecified vulnerability which can allow for remote code execution.

CVE IDCVE-2021-38646
VendorMicrosoft
ProductOffice
Vulnerability nameMicrosoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Date added2022-03-28
Remediation due2022-04-18
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionMicrosoft Office Access Connectivity Engine contains an unspecified vulnerability which can allow for remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →