CVSS: 9.3EPSS: 5%CPEs: 6EXPL: 0CVE-2020-17062 – Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-17062
11 Nov 2020 — Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código del Motor de Conectividad de Microsoft Office Access • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17062 •
CVSS: 5.5EPSS: 1%CPEs: 7EXPL: 0CVE-2020-17020 – Microsoft Word Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2020-17020
11 Nov 2020 — Microsoft Word Security Feature Bypass Vulnerability Vulnerabilidad de Omisión de la Característica de Seguridad de Microsoft Word Security • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-17020 •
CVSS: 7.8EPSS: 4%CPEs: 3EXPL: 0CVE-2020-16955 – Microsoft Office Click-to-Run Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2020-16955
16 Oct 2020 —
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.
To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.
The security update addresses the vulnerability by correcting how Microsoft Office Click-to-Run (C2R) components handle these files.
Se presenta una vulnerabilidad de escal... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16955 •CVSS: 7.8EPSS: 6%CPEs: 6EXPL: 0CVE-2020-16954 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16954
16 Oct 2020 —
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accou... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16954 •
CVSS: 7.8EPSS: 5%CPEs: 5EXPL: 0CVE-2020-16930 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16930
16 Oct 2020 —
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accoun... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16930 • CWE-787: Out-of-bounds Write CWE-824: Access of Uninitialized Pointer •
CVSS: 7.8EPSS: 4%CPEs: 3EXPL: 0CVE-2020-16928 – Microsoft Office Click-to-Run Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2020-16928
16 Oct 2020 —
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.
To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.
The security update addresses the vulnerability by correcting how Microsoft Office Click-to-Run (C2R) components handle these files.
Se presenta una vulnerabilidad de escal... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16928 •CVSS: 7.8EPSS: 6%CPEs: 18EXPL: 0CVE-2020-16929 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-16929
16 Oct 2020 —
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accoun... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16929 • CWE-416: Use After Free •
CVSS: 8.8EPSS: 2%CPEs: 13EXPL: 0CVE-2020-1335 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1335
11 Sep 2020 —
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accoun... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1335 •
CVSS: 8.8EPSS: 2%CPEs: 16EXPL: 0CVE-2020-1218 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1218
11 Sep 2020 —
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user with the same permissions as the current user.
To exploit the vulnerability, a user must open a specially crafted file with an affected version ... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1218 •
CVSS: 8.8EPSS: 2%CPEs: 8EXPL: 0CVE-2020-1193 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-1193
10 Sep 2020 —
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accoun... • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1193 •