VulniPulse uses Google Ads measurement to understand visits from advertisements and campaign performance. It runs cookie-free until you choose — accepting enables cookies for more accurate attribution. Rejecting keeps it cookie-free and never limits the site.
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. Affected products named by the advisory: Microsoft SharePoint Enterprise Server 2016; Microsoft SharePoint Server 2019; Microsoft SharePoint Server Subscription Edition.
What this means
In plain English
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. Affected products named by the advisory: Microsoft SharePoint Enterprise Server 2016; Microsoft SharePoint Server 2019; Microsoft SharePoint Server Subscription Edition.
Recommended action
Upgrade to a vendor-listed fixed release: KB5002891 (build 16.0.5561.1001), KB5002892 (build 16.0.5561.1001), KB5002883 (build 16.0.10417.20175), KB5002885 (build 16.0.10417.20175), KB5002882 (build 16.0.19725.20434), KB5002887 (build 16.0.5561.1000). Vendor-listed mitigations/workarounds: Install the applicable security update for your platform: KB5002891, KB5002892, KB5002883, KB5002885, KB5002882, KB5002887 (see the Microsoft Update Catalog).
Generated from the parsed advisory data above. The vendor advisory is authoritative.
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Microsoft SharePoint Enterprise Server 2016 16.0.0
Microsoft SharePoint Server 2019 16.0.0
Microsoft SharePoint Server Subscription Edition 16.0.0
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Fixed versions
KB5002891 (build 16.0.5561.1001)
KB5002892 (build 16.0.5561.1001)
KB5002883 (build 16.0.10417.20175)
KB5002885 (build 16.0.10417.20175)
KB5002882 (build 16.0.19725.20434)
KB5002887 (build 16.0.5561.1000)
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
Install the applicable security update for your platform: KB5002891, KB5002892, KB5002883, KB5002885, KB5002882, KB5002887 (see the Microsoft Update Catalog).
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Official documentation
Direct download of the KB5002892 security update named in the MSRC remediation data for this CVE.