CVE-2021-3117811.05.2021, 19:15Microsoft Office Information Disclosure VulnerabilityWrap or WraparoundEnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST5.5 MEDIUMLOCALLOWNONECVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NmicrosoftCNA5.5 MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:CCVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 91%VendorProductVersionmicrosoft365_apps-microsoftoffice_online_server-𝑥= Vulnerable software versionsCommon Weakness EnumerationCWE-191 - Integer Underflow (Wrap or Wraparound)The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31178https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31178