131 results (0.002 seconds)

CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0

Microsoft Office Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20673 • CWE-693: Protection Mechanism Failure •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0

Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current user. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21379 • CWE-190: Integer Overflow or Wraparound •

CVSS: 6.5EPSS: 0%CPEs: 11EXPL: 0

Microsoft Word Information Disclosure Vulnerability Vulnerabilidad de Divulgación de Información de Microsoft Word Microsoft Word contains an unspecified vulnerability that allows for information disclosure. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761 • CWE-20: Improper Input Validation •

CVSS: 7.3EPSS: 0%CPEs: 11EXPL: 0

Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36762 • CWE-20: Improper Input Validation •

CVSS: 9.6EPSS: 0%CPEs: 9EXPL: 0

Microsoft Office Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33150 •