CVE-2023-21716

Software Tag: Exchange(2 tweets) OpenSSL(1 tweets) PHP(1 tweets) VPN(1 tweets) Windows(16 tweets) iOS(19 tweets)

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

List of frequently cited URLs

URL	Num of Times Referred to
http://cyberiqs.com/latestnews	73
https://cvetrends.com	50
https://www.helpnetsecurity.com/2023/03/06/cve-2023-21716-poc	26
https://lists.astaro.com/ASGV9-IPS-rules.html#0	21
https://twitter.com/jduck/status/1632471544935923712	13
https://securityaffairs.com/143139/hacking/microsoft-word-c...	13
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...	12
https://github.com/Xnuvers007/CVE-2023-21716	8
https://qoop.org/publications/cve-2023-21716-rtf-fonttbl.md	7
http://twinybots.ch	6
https://www.bleepingcomputer.com/news/security/proof-of-con...	6
https://securityonline.info/poc-for-microsoft-word-rce-cve-...	5
https://opsmtrs.com/2ZFbaTl	4
https://www.tesorion.nl/nl/posts/microsoft-word-rce-kwetsba...	3
https://blog.segu-info.com.ar/2023/03/cve-2023-21716-vulner...	3

Name	URL
gyaansastra/CVE-2023-21716	https://github.com/gyaansastra/CVE-2023-21716
Xnuvers007/CVE-2023-21716	https://github.com/Xnuvers007/CVE-2023-21716
maldev866/WordExp_CVE_2023_21716	https://github.com/maldev866/WordExp_CVE_2023_21716
FeatherStark/CVE-2023-21716	https://github.com/FeatherStark/CVE-2023-21716
hv0l/CVE-2023-21716_exploit	https://github.com/hv0l/CVE-2023-21716_exploit
CKevens/CVE-2023-21716-POC	https://github.com/CKevens/CVE-2023-21716-POC
mikesxrs/CVE-2023-21716_YARA_Results	https://github.com/mikesxrs/CVE-2023-21716_YARA_Results

CVE-2023-21716

Description from NVD

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NVD References

Description from Forti

Microsoft Word Remote Code Execution Vulnerability

Affected Products

Impact

Recommended Actions

References

Refer to Information on External Sites

▼ Show Information from Twitter(361)

▼ Show Information from Twitter(361)

URL	Num of Times Referred to
cyberiqs.com	73
cvetrends.com	50
www.helpnetsecurity.com	26
lists.astaro.com	21
twitter.com	13
securityaffairs.com	13
msrc.microsoft.com	12
github.com	8
qoop.org	7
twinybots.ch	6
www.bleepingcomputer.com	6
securityonline.info	5
opsmtrs.com	4
www.tesorion.nl	3
blog.segu-info.com.ar	3

User	URL	Info Source
jduck	qoop.org	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
Raj_Samani	attackerkb.com	Show Tweet
Raj_Samani	twitter.com	Show Tweet
Sekurak	sekurak.pl	Show Tweet
HunterMapping	twitter.com	Show Tweet
HunterMapping	twitter.com	Show Tweet
TheCyberSecHub	dlvr.it	Show Tweet
shah_sheikh	helpnetsecurity.com	Show Tweet
shah_sheikh	twitter.com	Show Tweet
0reoSec	attackerkb.com	Show Tweet
0reoSec	twitter.com	Show Tweet
helpnetsecurity	helpnetsecurity.com	Show Tweet
helpnetsecurity	twitter.com	Show Tweet
PoseidonTPA	news.poseidon-us.com	Show Tweet
PoseidonTPA	twitter.com	Show Tweet
SK_Expert	ift.tt	Show Tweet
cipherstorm	helpnetsecurity.com	Show Tweet
cipherstorm	twitter.com	Show Tweet
nicoboettcher	buff.ly	Show Tweet
joviannfeed	bit.ly	Show Tweet
Xc0resecurity	dlvr.it	Show Tweet
SecurityNewsbot	helpnetsecurity.com	Show Tweet
Anti_Malware	anti-malware.ru	Show Tweet
Sec_Cyber	securecybersolution.com	Show Tweet
IT_news_for_all	msrc.microsoft.com	Show Tweet
IT_news_for_all	t.me	Show Tweet
cyberreport_io	dlvr.it	Show Tweet
cyberreport_io	twitter.com	Show Tweet
ka0com	helpnetsecurity.com	Show Tweet
IT_news_for_all	msrc.microsoft.com	Show Tweet
IT_news_for_all	t.me	Show Tweet
dusheeno	msrc.microsoft.com	Show Tweet
immuniweb	helpnetsecurity.com	Show Tweet
vumetric	vumetric.com	Show Tweet
MCKSysAr	qoop.org	Show Tweet
MCKSysAr	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
strinsert1Na	helpnetsecurity.com	Show Tweet
CeptBiro	helpnetsecurity.com	Show Tweet
ReneRobichaud	helpnetsecurity.com	Show Tweet
moton	helpnetsecurity.com	Show Tweet
HealthCyberInfo	ift.tt	Show Tweet
Har_sia	har-sia.info	Show Tweet
nekochanSec555	helpnetsecurity.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
thalles	helpnetsecurity.com	Show Tweet
SOCWALL_tw		Show Tweet
jhintzbe		Show Tweet
IT_news_for_all		Show Tweet
fix_newspeak	myforum.link	Show Tweet
tony_cleal	helpnetsecurity.com	Show Tweet
cadmiumadvtech	bit.ly	Show Tweet
VessOnSecurity	qoop.org	Show Tweet
cyberkendra	twitter.com	Show Tweet
Har_sia	har-sia.info	Show Tweet
GuruCumar	lnkd.in	Show Tweet
ipssignatures	twitter.com	Show Tweet
foxbook	helpnetsecurity.com	Show Tweet
stephenmarriott	bleepingcomputer.com	Show Tweet
cKure7	qoop.org	Show Tweet
cKure7	helpnetsecurity.com	Show Tweet
GRComputers	bleepingcomputer.com	Show Tweet
OverSecurity	link.is.it	Show Tweet
OverSecurity	twitter.com	Show Tweet
CoreSenses	helpnetsecurity.com	Show Tweet
fix_newspeak	myforum.link	Show Tweet
Nectux	helpnetsecurity.com	Show Tweet
__kokumoto	bleepingcomputer.com	Show Tweet
autumn_good_35	bleepingcomputer.com	Show Tweet
the_yellow_fall	securityonline.info	Show Tweet
AcooEdi	dlvr.it	Show Tweet
AcooEdi	twitter.com	Show Tweet
wdormann	twitter.com	Show Tweet
wdormann	twitter.com	Show Tweet
Dinosn	securityonline.info	Show Tweet
Komodosec	securityonline.info	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
PentestingN	securityonline.info	Show Tweet
ITConnect_fr	it-connect.fr	Show Tweet
TechTalkThai	techtalkthai.com	Show Tweet
th4ts3cur1ty	helpnetsecurity.com	Show Tweet
MrRobotSN	twitter.com	Show Tweet
InfoSecPhysa	socradar.io	Show Tweet
MachinaRecord	codebook.machinarecord.com	Show Tweet
niiconsulting	twitter.com	Show Tweet
Guardia_School	helpnetsecurity.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
Cyber_Vigilance	bleepingcomputer.com	Show Tweet
jhondarred	msrc.microsoft.com	Show Tweet
nigroeneveld	linkedin.com	Show Tweet
onhexgroup	onhexgroup.ir	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
elceef	virustotal.com	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
WolfgangSesin	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
www_sesin_at	sesin.at	Show Tweet
ksg93rd	seclists.org	Show Tweet
Gi7w0rm	msrc.microsoft.com	Show Tweet
Gi7w0rm	twitter.com	Show Tweet
Gi7w0rm	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
moton	securityonline.info	Show Tweet
XMCyber_	hubs.li	Show Tweet
BlackpointUS	twitter.com	Show Tweet
hudsonseiler	helpnetsecurity.com	Show Tweet
JoeyShenouda	cybersec.xmcyber.com	Show Tweet
amgdgocha	github.com	Show Tweet
_avahgar_	twitter.com	Show Tweet
SI_FalconTeam	twitter.com	Show Tweet
sirifu4k1	qoop.org	Show Tweet
cKure7	qoop.org	Show Tweet
cKure7	helpnetsecurity.com	Show Tweet
Har_sia	har-sia.info	Show Tweet
securityaffairs	securityaffairs.com	Show Tweet
thedpsadvisors	securityaffairs.com	Show Tweet
shah_sheikh	securityaffairs.com	Show Tweet
Cyber_O51NT	securityaffairs.com	Show Tweet
security_inside	securityaffairs.com	Show Tweet
speedealz	o.wzm.me	Show Tweet
speedealz	nvd.nist.gov	Show Tweet
ipssignatures	twitter.com	Show Tweet
HackerSpyNet1	securityaffairs.com	Show Tweet
gikogang	twitter.com	Show Tweet
ntsuji	twitter.com	Show Tweet
wallet_guard	msrc.microsoft.com	Show Tweet
wallet_guard	twitter.com	Show Tweet
wallet_guard	msrc.microsoft.com	Show Tweet
wallet_guard	securityaffairs.com	Show Tweet
threatintel	bleepingcomputer.com	Show Tweet
admITeu	twitter.com	Show Tweet
breach_trace	breachtrace.com	Show Tweet
breach_trace	twitter.com	Show Tweet
vicariusltd	vicarius.io	Show Tweet
elhackernet	qoop.org	Show Tweet
elhackernet	msrc.microsoft.com	Show Tweet
elhackernet	twitter.com	Show Tweet
Tesorion_NL	tesorion.nl	Show Tweet
Tesorion_NL	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
melantrix	tesorion.nl	Show Tweet
melantrix	twitter.com	Show Tweet
WhichbufferArda	twitter.com	Show Tweet
NRG_fx	securityaffairs.com	Show Tweet
Whitehead4Jeff	securityaffairs.com	Show Tweet
CpldSecOps	tesorion.nl	Show Tweet
CpldSecOps	twitter.com	Show Tweet
catnap707	securityaffairs.com	Show Tweet
wdormann	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
emilio_simoni	techsecurity.com.br	Show Tweet
Automox	okt.to	Show Tweet
MariaRusanova88	blackhatethicalhacking.com	Show Tweet
FortiGuardLabs	ftnt.net	Show Tweet
FortiGuardLabs	twitter.com	Show Tweet
Cannibal	msrc.microsoft.com	Show Tweet
Cannibal	twitter.com	Show Tweet
AstraKernel	helpnetsecurity.com	Show Tweet
itsrohitchouhan	twitter.com	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
AstraKernel	twitter.com	Show Tweet
shah_sheikh	gbhackers.com	Show Tweet
shah_sheikh	twitter.com	Show Tweet
Djax_Alpha	cybersec.xmcyber.com	Show Tweet
eileendh72	tesorion.nl	Show Tweet
eileendh72	twitter.com	Show Tweet
B2bCyber	b2b-cyber-security.de	Show Tweet
B2bCyber	twitter.com	Show Tweet
cnjea	helpnetsecurity.com	Show Tweet
Prohacktiv3	github.com	Show Tweet
Prohacktiv3	twitter.com	Show Tweet
Pyo0072	securityaffairs.com	Show Tweet
twelvesec	buff.ly	Show Tweet
twelvesec	twitter.com	Show Tweet
hbijsterbosch	tesorion.nl	Show Tweet
hbijsterbosch	twitter.com	Show Tweet
amgdgocha	github.com	Show Tweet
Sh0ckFR	github.com	Show Tweet
habra_news	habr.com	Show Tweet
habra_news	twitter.com	Show Tweet
cyberthint	twitter.com	Show Tweet
cyberthint	twitter.com	Show Tweet
cyberthint	twitter.com	Show Tweet
cyberthint	twitter.com	Show Tweet
proficioinc	securityaffairs.com	Show Tweet
TowardsCybersec	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
OhmSecurities	qoop.org	Show Tweet
OhmSecurities	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
boringHustler	pike.link	Show Tweet
Har_sia	har-sia.info	Show Tweet
certlv	CERT.LV	Show Tweet
certlv	msrc.microsoft.com	Show Tweet
certlv	twitter.com	Show Tweet
DragonJAR	twitter.com	Show Tweet
wallet_guard	msrc.microsoft.com	Show Tweet
wallet_guard	twitter.com	Show Tweet
domineefh	msrc.microsoft.com	Show Tweet
domineefh	qoop.org	Show Tweet
AWNetworks	arcticwolf.com	Show Tweet
Juni11K	msrc.microsoft.com	Show Tweet
riskigy	buff.ly	Show Tweet
riskigy	twitter.com	Show Tweet
MeegulWorth	github.com	Show Tweet
wdormann	support.microsoft.com	Show Tweet
wdormann	twitter.com	Show Tweet
SeguInfo	ift.tt	Show Tweet
Gate_15_Analyst	arcticwolf.com	Show Tweet
Seguridadula	ift.tt	Show Tweet
SeguInfo	virustotal.com	Show Tweet
3m1l	ift.tt	Show Tweet
BringITON_CA	dlvr.it	Show Tweet
ipssignatures	twitter.com	Show Tweet
NobMiwa	twitter.com	Show Tweet
w00z_	dlvr.it	Show Tweet
w00z_	twitter.com	Show Tweet
ujdmc	ftnt.net	Show Tweet
ujdmc	twitter.com	Show Tweet
jesusMamoros	dlvr.it	Show Tweet
jesusMamoros	twitter.com	Show Tweet
EHCGroup	blog.ehcgroup.io	Show Tweet
EHCGroup	twitter.com	Show Tweet
pentest365	blog.ehcgroup.io	Show Tweet
pentest365	twitter.com	Show Tweet
asccybersec	twitter.com	Show Tweet
vjgils	dlvr.it	Show Tweet
M3XT4R	dlvr.it	Show Tweet
M3XT4R	twitter.com	Show Tweet
d_a_gallardo	dlvr.it	Show Tweet
d_a_gallardo	twitter.com	Show Tweet
securityaffairs	securityaffairs.com	Show Tweet
CositasVarias	bit.ly	Show Tweet
CositasVarias	twitter.com	Show Tweet
wdormann	twitter.com	Show Tweet
wmagliano	github.com	Show Tweet
opsmatters_uk	opsmtrs.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
profesortech	dlvr.it	Show Tweet
profesortech	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
t1t0wap0	linkedin.com	Show Tweet
secuninja	virustotal.com	Show Tweet
ervik	livesocial.seismic.com	Show Tweet
etguenni	borncity.com	Show Tweet
ciber_forense	blog.segu-info.com.ar	Show Tweet
VELO_ch	news.mynavi.jp	Show Tweet
cchanabo	helpnetsecurity.com	Show Tweet
3bData	twitter.com	Show Tweet
CyberIQs_	cyberiqs.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
0patch	blog.0patch.com	Show Tweet
0patch	twitter.com	Show Tweet
Har_sia	har-sia.info	Show Tweet
theTonyTaylor	gag.gl	Show Tweet
filipe_f_silva	securityboulevard.com	Show Tweet
cipherstorm	securityboulevard.com	Show Tweet
cipherstorm	twitter.com	Show Tweet
BentleyAudrey	cybersec.xmcyber.com	Show Tweet
SK_Expert	ift.tt	Show Tweet
NormanOre	ift.tt	Show Tweet
mdcstp	lnkd.in	Show Tweet
Tecnovan	bit.ly	Show Tweet
Tecnovan	twitter.com	Show Tweet
Saint_Intel	blog.segu-info.com.ar	Show Tweet
DYSTEC	blog.segu-info.com.ar	Show Tweet
loc_toko	news.mynavi.jp	Show Tweet
0xbfho	ift.tt	Show Tweet
hack_git	github.com	Show Tweet
hack_git	twitter.com	Show Tweet
gebutcher	bit.ly	Show Tweet
gebutcher	twitter.com	Show Tweet
hack_git	t.me	Show Tweet
hack_git	twitter.com	Show Tweet
cybersecboardrm	github.com	Show Tweet
MondooHQ	mondoo.link	Show Tweet
DecodeDecrypt	twinybots.ch	Show Tweet
DecodeDecrypt	github.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
dilagrafie	t.me	Show Tweet
Har_sia	har-sia.info	Show Tweet
Avertium	bit.ly	Show Tweet
Avertium	bit.ly	Show Tweet
Avertium	twitter.com	Show Tweet
JsPadoan	twinybots.ch	Show Tweet
JsPadoan	github.com	Show Tweet
0xbadad	twinybots.ch	Show Tweet
0xbadad	github.com	Show Tweet
Paula_Piccard	github.com	Show Tweet
cornichecorp	twinybots.ch	Show Tweet
cornichecorp	github.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
Har_sia	har-sia.info	Show Tweet
Har_sia	har-sia.info	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
victor_ruiz	helpnetsecurity.com	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
buaqbot	ift.tt	Show Tweet
Prohacktiv3	github.com	Show Tweet
Prohacktiv3	twitter.com	Show Tweet
Juan_Hermann	blog.segu-info.com.ar	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
VulcanCyber	vulcan.io	Show Tweet
VulcanCyber	twitter.com	Show Tweet
360sandboxcloud	mp.weixin.qq.com	Show Tweet
360sandboxcloud	bilibili.com	Show Tweet
360sandboxcloud	ata.360.net	Show Tweet
360sandboxcloud	twitter.com	Show Tweet
ITconnecter	buff.ly	Show Tweet
ITconnecter	twitter.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
wdormann	twitter.com	Show Tweet
hasdid	helpnetsecurity.com	Show Tweet
tresronours	lnkd.in	Show Tweet
tresronours	lnkd.in	Show Tweet
ipssignatures	twitter.com	Show Tweet
wdormann	twitter.com	Show Tweet
ipssignatures	lists.astaro.com	Show Tweet
securitydailyr	securitydailyreview.com	Show Tweet
securitydailyr	twitter.com	Show Tweet
iototsecnews	iototsecnews.jp	Show Tweet
tresronours	lnkd.in	Show Tweet
tresronours	lnkd.in	Show Tweet
BentleyAudrey	cybersec.vulcan.io	Show Tweet
MariaRusanova88	vulcan.io	Show Tweet
MariaRusanova88	twitter.com	Show Tweet
MariaRusanova88	twitter.com	Show Tweet
OPSWAT	hubs.la	Show Tweet
OPSWAT	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
Djax_Alpha	cybersec.vulcan.io	Show Tweet
k7computing	labs.k7computing.com	Show Tweet
k7computing	twitter.com	Show Tweet
InfoSecPhysa	netskope.com	Show Tweet
opsmatters_uk	opsmtrs.com	Show Tweet
ipssignatures	securityportal.watchguard.com	Show Tweet
ipssignatures	ipssignatures.appspot.com	Show Tweet
nao_sec	virustotal.com	Show Tweet
nao_sec	twitter.com	Show Tweet
ipssignatures	twitter.com	Show Tweet
Unidade_37	unidade37.com.br	Show Tweet
Unidade_37	twitter.com	Show Tweet
Unidade_37	unidade37.com.br	Show Tweet
Unidade_37	twitter.com	Show Tweet
InfosecMonk	twitter.com	Show Tweet
CyberIQs_	cyberiqs.com	Show Tweet