CVSS: 9.3EPSS: 1%CPEs: 10EXPL: 0CVE-2020-17128 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17128
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17123, CVE-2020-17125, CVE-2020-17127, CVE-2020-17129 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. Crafted data in an XLS file can trigger a dereference of a user-supplied value as a pointer. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17128 •
CVSS: 9.3EPSS: 1%CPEs: 8EXPL: 0CVE-2020-17125 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17125
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17123, CVE-2020-17127, CVE-2020-17128, CVE-2020-17129 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17125 •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2020-17126 – Microsoft Excel Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-17126
Microsoft Excel Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Excel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17126 •
CVSS: 9.3EPSS: 1%CPEs: 9EXPL: 0CVE-2020-17123 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17123
Microsoft Excel Remote Code Execution Vulnerability Vulnerabilidad de ejecución de código remota en Microsoft Excel. Este ID de CVE es diferente a CVE-2020-17122, CVE-2020-17125, CVE-2020-17127, CVE-2020-17128, CVE-2020-17129 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17123 •
CVSS: 7.5EPSS: 77%CPEs: 5EXPL: 0CVE-2020-17119 – Microsoft Outlook Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-17119
Microsoft Outlook Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Outlook This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Outlook. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of MSG files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17119 •