CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-21932 – Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
https://notcve.org/view.php?id=CVE-2022-21932
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability Una vulnerabilidad de tipo Cross-Site Scripting de Microsoft Dynamics 365 Customer Engagement • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21932 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21932 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-21891 – Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2022-21891
Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability Una vulnerabilidad de Suplantación de Microsoft Dynamics 365 (en las instalaciones) • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21891 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21891 •
CVSS: 9.3EPSS: 17%CPEs: 13EXPL: 0CVE-2022-21841 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-21841
Microsoft Excel Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Excel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21841 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21841 •
CVSS: 7.8EPSS: 6%CPEs: 8EXPL: 0CVE-2021-43875 – Microsoft Office Graphics Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-43875
Microsoft Office Graphics Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Office Graphics This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the glTF-SDK component. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43875 •
CVSS: 7.8EPSS: 24%CPEs: 13EXPL: 0CVE-2021-43256 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-43256
Microsoft Excel Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Excel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43256 •