CVSS: 9.3EPSS: 7%CPEs: 15EXPL: 0CVE-2018-8628 – Microsoft Office PowerPoint PPT File Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-8628
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft PowerPoint, Microsoft SharePoint, Microsoft PowerPoint Viewer, Office Online Server, Microsoft SharePoint Server. Existe una vulnerabilidad de ejecución remota de código en el software de Microsoft PowerPoint cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Microsoft PowerPoint Remote Code Execution Vulnerability". Esto afecta a Microsoft Office, Office 365 ProPlus, Microsoft PowerPoint, Microsoft SharePoint, Microsoft PowerPoint Viewer, Office Online Server y Microsoft SharePoint Server. • http://www.securityfocus.com/bid/106104 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8628 •
CVSS: 9.3EPSS: 13%CPEs: 6EXPL: 0CVE-2018-8636
https://notcve.org/view.php?id=CVE-2018-8636
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8597. Existe una vulnerabilidad de ejecución remota de código en Microsoft Excel cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Microsoft Excel Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/106101 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8636 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-8558
https://notcve.org/view.php?id=CVE-2018-8558
An information disclosure vulnerability exists when Microsoft Outlook fails to respect "Default link type" settings configured via the SharePoint Online Admin Center, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8579. Existe una vulnerabilidad de divulgación de información cuando Microsoft Outlook no respeta la opción "Default link type" configurada mediante el centro de administración online de SharePoint. Esto también se conoce como "Microsoft Outlook Information Disclosure Vulnerability". • http://www.securityfocus.com/bid/105826 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8558 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 15%CPEs: 6EXPL: 0CVE-2018-8582
https://notcve.org/view.php?id=CVE-2018-8582
A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576. Existe una vulnerabilidad de ejecución remota de código cuando Microsoft Outlook analiza archivos de exportación de reglas especialmente manipulados. Esto también se conoce como "Microsoft Outlook Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/105825 http://www.securitytracker.com/id/1042110 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582 •
CVSS: 5.9EPSS: 0%CPEs: 6EXPL: 0CVE-2018-8546 – Microsoft Skype 2015 / 2016 Denial Of Service
https://notcve.org/view.php?id=CVE-2018-8546
A denial of service vulnerability exists in Skype for Business, aka "Microsoft Skype for Business Denial of Service Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype. Existe una vulnerabilidad de denegación de servicio (DoS) en Skype for Business. Esto también se conoce como "Microsoft Skype for Business Denial of Service Vulnerability". Esto afecta a Office 365 ProPlus, Microsoft Office, Microsoft Lync y Skype. • http://www.securityfocus.com/bid/105802 http://www.securitytracker.com/id/1042125 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8546 •