CVE-2021-42292: 
vulnerability analysis and mitigation

Microsoft Excel Security Feature Bypass Vulnerability (CVE-2021-42292) was disclosed on November 9, 2021. This vulnerability affects Microsoft Excel, specifically Microsoft Office 2019 for Mac and Microsoft Office LTSC for Mac 2021. The vulnerability received a CVSS score of 7.8 (High) and was reported to be actively exploited in the wild (Arctic Wolf).

The vulnerability is classified as a security feature bypass that could lead to local code execution through specially crafted Excel files. At the time of disclosure, it received a CVSS v3 score of 7.8, categorizing it as High severity (Arctic Wolf).

If successfully exploited, this vulnerability could allow an attacker to bypass security features in Microsoft Excel, potentially leading to local code execution on the target system (Arctic Wolf).

Microsoft released security updates to address this vulnerability on November 9, 2021. The patch is available through Microsoft Update, Microsoft Update Catalog, and Microsoft Download Center. However, updates for Microsoft Office 2019 for Mac and Microsoft Office LTSC for Mac 2021 were not immediately available at the time of disclosure (Microsoft Support).