CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-8579
https://notcve.org/view.php?id=CVE-2018-8579
An information disclosure vulnerability exists when attaching files to Outlook messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8558. Existe una vulnerabilidad de divulgación de información al adjuntar archivos a mensajes de Outlook. Esto también se conoce como "Microsoft Outlook Information Disclosure Vulnerability". • http://www.securityfocus.com/bid/105828 http://www.securitytracker.com/id/1042132 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8579 •
CVSS: 9.3EPSS: 17%CPEs: 6EXPL: 0CVE-2018-8582
https://notcve.org/view.php?id=CVE-2018-8582
A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576. Existe una vulnerabilidad de ejecución remota de código cuando Microsoft Outlook analiza archivos de exportación de reglas especialmente manipulados. Esto también se conoce como "Microsoft Outlook Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/105825 http://www.securitytracker.com/id/1042110 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582 •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-8605
https://notcve.org/view.php?id=CVE-2018-8605
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. This CVE ID is unique from CVE-2018-8606, CVE-2018-8607, CVE-2018-8608. Existe una vulnerabilidad Cross-Site Scripting (XSS) cuando Microsoft Dynamics 365 (on-premises), versión 8, no sanea correctamente una petición web especialmente manipulada a un servidor Dynamics afectado. Esto también se conoce como "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability". • http://www.securityfocus.com/bid/105889 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8605 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-8606
https://notcve.org/view.php?id=CVE-2018-8606
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. This CVE ID is unique from CVE-2018-8605, CVE-2018-8607, CVE-2018-8608. Existe una vulnerabilidad Cross-Site Scripting (XSS) cuando Microsoft Dynamics 365 (on-premises), versión 8, no sanea correctamente una petición web especialmente manipulada a un servidor Dynamics afectado. Esto también se conoce como "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability". • http://www.securityfocus.com/bid/105890 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8606 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2018-8607
https://notcve.org/view.php?id=CVE-2018-8607
A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) version 8 does not properly sanitize a specially crafted web request to an affected Dynamics server, aka "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability." This affects Microsoft Dynamics 365. This CVE ID is unique from CVE-2018-8605, CVE-2018-8606, CVE-2018-8608. Existe una vulnerabilidad Cross-Site Scripting (XSS) cuando Microsoft Dynamics 365 (on-premises), versión 8, no sanea correctamente una petición web especialmente manipulada a un servidor Dynamics afectado. Esto también se conoce como "Microsoft Dynamics 365 (on-premises) version 8 Cross Site Scripting Vulnerability". • http://www.securityfocus.com/bid/105891 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8607 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •