CVSS: 7.8EPSS: 1%CPEs: 13EXPL: 2CVE-2023-23399 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-23399
14 Mar 2023 — Microsoft Excel Remote Code Execution Vulnerability Microsoft Excel 365 MSO version 2302 build 16.0.16130.20186 64-bit suffers from a remote code execution vulnerability. • https://packetstorm.news/files/id/171767 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 1CVE-2023-23398 – Microsoft Excel Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-23398
14 Mar 2023 — Microsoft Excel Spoofing Vulnerability Microsoft Excel suffers from a spoofing vulnerability. • https://packetstorm.news/files/id/171752 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 10.0EPSS: 93%CPEs: 6EXPL: 32CVE-2023-23397 – Microsoft Office Outlook Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2023-23397
14 Mar 2023 — Microsoft Outlook Elevation of Privilege Vulnerability Microsoft Office Outlook contains a privilege escalation vulnerability that allows for a NTLM Relay attack against another service to authenticate as the user. • https://packetstorm.news/files/id/171376 • CWE-20: Improper Input Validation CWE-294: Authentication Bypass by Capture-replay •
CVSS: 10.0EPSS: 89%CPEs: 12EXPL: 12CVE-2023-21716 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21716
14 Feb 2023 — Microsoft Word Remote Code Execution Vulnerability • https://github.com/MojithaR/CVE-2023-21716-EXPLOIT.py • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21736 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21736
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buf... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21736 • CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21737 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21737
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Office Visio This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files.The issue results from the lack of proper validation of the length of u... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21737 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21741 – Microsoft Office Visio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21741
10 Jan 2023 — Microsoft Office Visio Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Office Visio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21741 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-44695 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-44695
13 Dec 2022 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office Visio This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files. The issue results from the lack of validating the existence of... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44695 •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2022-41060 – Microsoft Word Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41060
09 Nov 2022 — Microsoft Word Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41060 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2022-41061 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41061
09 Nov 2022 — Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41061 • CWE-94: Improper Control of Generation of Code ('Code Injection') •