CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2022-26901 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-26901
15 Apr 2022 — Microsoft Excel Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Excel. Este ID de CVE es diferente de CVE-2022-24473 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS files. The issue results from the lack of valid... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26901 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-43256 – Microsoft Excel Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-43256
15 Dec 2021 — Microsoft Excel Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Microsoft Excel • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43256 •
CVSS: 9.3EPSS: 83%CPEs: 25EXPL: 2CVE-2019-0541 – Microsoft MSHTML Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-0541
08 Jan 2019 — A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus. Existe una vulnerabilidad de ejecución remota de código debido a la forma en la que el motor MSHTML valida indebidamente las entradas. Esto también se conoce como "MSHTML Engine ... • https://packetstorm.news/files/id/152070 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.3EPSS: 16%CPEs: 5EXPL: 0CVE-2018-8379
https://notcve.org/view.php?id=CVE-2018-8379
15 Aug 2018 — A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel. This CVE ID is unique from CVE-2018-8375. Existe una vulnerabilidad de ejecución remota de código en el software de Microsoft Excel cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Microsoft Excel Remote Code Execution Vulnerability". • http://www.securityfocus.com/bid/104997 •
CVSS: 5.5EPSS: 14%CPEs: 8EXPL: 0CVE-2018-8382
https://notcve.org/view.php?id=CVE-2018-8382
15 Aug 2018 — An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel. Existe una vulnerabilidad de divulgación de información cuando Microsoft Excel no muestra correctamente los contenidos de su memoria. Esto también se conoce como "Microsoft Excel Information Disclosure Vulnerability". Esto afecta a Microsoft Excel Viewer, Microso... • http://www.securityfocus.com/bid/105000 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 23%CPEs: 3EXPL: 0CVE-2018-1011 – Microsoft Office Excel Slicer Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-1011
11 Apr 2018 — A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel. This CVE ID is unique from CVE-2018-0920, CVE-2018-1027, CVE-2018-1029. Existe una vulnerabilidad de ejecución remota de código en el software de Microsoft Excel cuando no gestiona correctamente objetos en la memoria. Esto también se conoce como "Microsoft Excel Remote Code Execution Vul... • http://www.securityfocus.com/bid/103611 •
CVSS: 5.5EPSS: 25%CPEs: 14EXPL: 0CVE-2016-3279
https://notcve.org/view.php?id=CVE-2016-3279
13 Jul 2016 — Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Excel 2016, Word 2016, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to execute arbitrary code via a crafted XLA file, aka "Microsoft Office Remote Code Execution Vulnerability." Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, ... • http://www.securityfocus.com/bid/91587 • CWE-254: 7PK - Security Features •
CVSS: 9.3EPSS: 31%CPEs: 9EXPL: 0CVE-2016-3284
https://notcve.org/view.php?id=CVE-2016-3284
13 Jul 2016 — Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel para Mac 2011, Excel 2016 para Mac, Office Compatibility Pack SP3 y Excel Viewer permiten a atacantes re... • http://www.securityfocus.com/bid/91594 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 19%CPEs: 36EXPL: 0CVE-2015-2423
https://notcve.org/view.php?id=CVE-2015-2423
15 Aug 2015 — Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Visio 2013 RT SP1, Word 2013 RT SP1, and Internet Explorer 7 through 11 al... • http://www.securitytracker.com/id/1033237 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 55%CPEs: 18EXPL: 0CVE-2013-3889
https://notcve.org/view.php?id=CVE-2013-3889
09 Oct 2013 — Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; Office Compatibility Pack SP3; and Excel Services and Word Automation Services in SharePoint Server 2013 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Excel Memory Corruption Vulnerability." Microsoft Excel 2007 SP3, 2010 SP1 y SP2, 2013, y 2013 RT; Office 2007 SP3, 2010 SP1 y SP2, 2013, y 2013 RT; Office para... • http://www.us-cert.gov/ncas/alerts/TA13-288A • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •