CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21736 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21736
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buf... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21736 • CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21737 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21737
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Office Visio This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files.The issue results from the lack of proper validation of the length of u... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21737 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21741 – Microsoft Office Visio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21741
10 Jan 2023 — Microsoft Office Visio Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Office Visio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21741 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-44695 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-44695
13 Dec 2022 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office Visio This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files. The issue results from the lack of validating the existence of... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44695 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-38010 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-38010
13 Sep 2022 — Microsoft Office Visio Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Office Visio. Este ID de CVE es diferente de CVE-2022-37963 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38010 •
CVSS: 7.0EPSS: 0%CPEs: 5EXPL: 0CVE-2021-27055 – Microsoft Visio Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2021-27055
11 Mar 2021 — Microsoft Visio Security Feature Bypass Vulnerability Una Vulnerabilidad de Omisión de la Característica de Seguridad de Microsoft Visio • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27055 •
CVSS: 8.8EPSS: 37%CPEs: 33EXPL: 0CVE-2020-0760
https://notcve.org/view.php?id=CVE-2020-0760
15 Apr 2020 — A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991. Hay una vulnerabilidad de ejecución de código remota cuando Microsoft Office carga inapropiadamente bibliotecas de tipos arbitrarios, también se conoce como "Microsoft Office Remote Code Execution Vulnerability". Este ID de CVE es diferente de CVE-2020-0991. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0760 •
CVSS: 9.3EPSS: 85%CPEs: 6EXPL: 3CVE-2016-3235 – Microsoft Office OLE DLL Side Loading Vulnerability
https://notcve.org/view.php?id=CVE-2016-3235
15 Jun 2016 — Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability." Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3 y Visio Viewer 2010 no maneja adecuadamente la carga de librerías, lo que permite a usuarios locales obtener privilegios a través de una aplicación ... • https://packetstorm.news/files/id/139671 •
CVSS: 4.3EPSS: 13%CPEs: 25EXPL: 0CVE-2016-0012
https://notcve.org/view.php?id=CVE-2016-0012
13 Jan 2016 — Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Office 2016, Excel 2016, PowerPoint 2016, Visio 2016, Word 2016, and Visual Basic 6.0 Runtime allow remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka ... • http://www.securitytracker.com/id/1034651 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 31%CPEs: 44EXPL: 0CVE-2015-2503
https://notcve.org/view.php?id=CVE-2015-2503
11 Nov 2015 — Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) SP3, Access 2010 SP2, Excel 2010 SP2, InfoPath 2010 SP2, OneNote 2010 SP2, PowerPoint 2010 SP2, Project 2010 SP2, Publisher 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Pinyin IME 2010, Access 2013 SP1, Excel 2013 SP1, InfoPath 2013 SP1, OneNote 2013 SP1, PowerPoint 2013 SP1, Project 2013 SP1, Publisher 2013 SP1, Visi... • http://www.securitytracker.com/id/1034117 • CWE-264: Permissions, Privileges, and Access Controls •