CVE-2024-38226CISA KEVEPSS p83.8%

CVE-2024-38226Microsoft Publisher Protection Mechanism Failure Vulnerability

Microsoft / Publisher

Description

Microsoft Publisher contains a protection mechanism failure vulnerability that allows attacker to bypass Office macro policies used to block untrusted or malicious files.

Scoring

EPSS2.67% probability of exploitation · percentile 83.8% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2024-09-10

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Publisher Protection Mechanism Failure Vulnerabilitykev-cve-2024-382260%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2023-21715
CVE
CVE-2026-33114
CVE
Microsoft Windows Mark of the Web (MOTW) Protection Mechanism Failure Vulnerability
CVE
Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability
CVE
Microsoft Office Security Feature Bypass Vulnerability
CVE
Microsoft Power Pages Improper Access Control Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.