CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0CVE-2024-38169 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-38169
13 Aug 2024 — Microsoft Office Visio Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of VSDX files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object.... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38169 • CWE-122: Heap-based Buffer Overflow •
CVSS: 9.0EPSS: 2%CPEs: 1EXPL: 0CVE-2024-38182 – Microsoft Dynamics 365 Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-38182
31 Jul 2024 — Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network. La autenticación débil en Microsoft Dynamics 365 permite que un atacante no autenticado eleve los privilegios en una red. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38182 • CWE-1390: Weak Authentication •
CVSS: 10.0EPSS: 13%CPEs: 4EXPL: 0CVE-2024-38021 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-38021
09 Jul 2024 — Microsoft Outlook Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38021 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-38020 – Microsoft Outlook Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2024-38020
09 Jul 2024 — Microsoft Outlook Spoofing Vulnerability Vulnerabilidad de suplantación de Microsoft Outlook • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38020 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.5EPSS: 4%CPEs: 1EXPL: 0CVE-2024-30061 – Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-30061
09 Jul 2024 — Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Dynamics 365 (local) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30061 • CWE-285: Improper Authorization •
CVSS: 6.8EPSS: 4%CPEs: 1EXPL: 0CVE-2024-35263 – Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-35263
11 Jun 2024 — Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Dynamics 365 (local) • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35263 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.0EPSS: 51%CPEs: 3EXPL: 0CVE-2024-35249 – Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-35249
11 Jun 2024 — Microsoft Dynamics 365 Business Central Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Dynamics 365 Business Central • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35249 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.5EPSS: 2%CPEs: 3EXPL: 0CVE-2024-35248 – Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2024-35248
11 Jun 2024 — Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios de Microsoft Dynamics 365 Business Central • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-35248 • CWE-287: Improper Authentication CWE-1390: Weak Authentication •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 1CVE-2024-30104 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-30104
11 Jun 2024 — Microsoft Office Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office Microsoft Office 365 appears susceptible to macro code execution that can result in remote code execution. • https://packetstorm.news/files/id/179394 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 9.0EPSS: 16%CPEs: 8EXPL: 0CVE-2024-30103 – Microsoft Outlook Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-30103
11 Jun 2024 — Microsoft Outlook Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Outlook • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30103 • CWE-184: Incomplete List of Disallowed Inputs •