CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-21356 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21356
14 Jan 2025 — Microsoft Office Visio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21356 • CWE-122: Heap-based Buffer Overflow CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-21345 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-21345
14 Jan 2025 — Microsoft Office Visio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21345 • CWE-416: Use After Free •
CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 0CVE-2024-49053 – Microsoft Dynamics 365 Sales Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-49053
26 Nov 2024 — Microsoft Dynamics 365 Sales Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49053 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-43616 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43616
08 Oct 2024 — Microsoft Office Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43616 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0CVE-2024-43576 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43576
08 Oct 2024 — Microsoft Office Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43576 • CWE-426: Untrusted Search Path •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-43505 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-43505
08 Oct 2024 — Microsoft Office Visio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43505 • CWE-357: Insufficient UI Warning of Dangerous Operations •
CVSS: 9.0EPSS: 3%CPEs: 3EXPL: 0CVE-2024-43460 – Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-43460
17 Sep 2024 — Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43460 • CWE-285: Improper Authorization •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2024-43476 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2024-43476
10 Sep 2024 — Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43476 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 7%CPEs: 2EXPL: 0CVE-2024-38225 – Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-38225
10 Sep 2024 — Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38225 • CWE-287: Improper Authentication •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-38211 – Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2024-38211
13 Aug 2024 — Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38211 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •