CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2024-20673 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20673
13 Feb 2024 — Microsoft Office Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20673 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21736 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21736
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buf... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21736 • CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21737 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21737
10 Jan 2023 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en Microsoft Office Visio This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files.The issue results from the lack of proper validation of the length of u... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21737 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-21741 – Microsoft Office Visio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-21741
10 Jan 2023 — Microsoft Office Visio Information Disclosure Vulnerability Vulnerabilidad de divulgación de información en Microsoft Office Visio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21741 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-44695 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-44695
13 Dec 2022 — Microsoft Office Visio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office Visio This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files. The issue results from the lack of validating the existence of... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-44695 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2022-38010 – Microsoft Office Visio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-38010
13 Sep 2022 — Microsoft Office Visio Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Office Visio. Este ID de CVE es diferente de CVE-2022-37963 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38010 •
CVSS: 7.0EPSS: 0%CPEs: 5EXPL: 0CVE-2021-27055 – Microsoft Visio Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2021-27055
11 Mar 2021 — Microsoft Visio Security Feature Bypass Vulnerability Una Vulnerabilidad de Omisión de la Característica de Seguridad de Microsoft Visio • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27055 •
CVSS: 8.8EPSS: 37%CPEs: 33EXPL: 0CVE-2020-0760
https://notcve.org/view.php?id=CVE-2020-0760
15 Apr 2020 — A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991. Hay una vulnerabilidad de ejecución de código remota cuando Microsoft Office carga inapropiadamente bibliotecas de tipos arbitrarios, también se conoce como "Microsoft Office Remote Code Execution Vulnerability". Este ID de CVE es diferente de CVE-2020-0991. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0760 •
CVSS: 9.3EPSS: 22%CPEs: 1EXPL: 0CVE-2016-3364
https://notcve.org/view.php?id=CVE-2016-3364
14 Sep 2016 — Microsoft Visio 2016 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability." Microsoft Visio 2016 permite a atacantes remotos ejecutar código arbitrario a través de un documento manipulado, vulnerabilidad también conocida como "Microsoft Office Memory Corruption Vulnerability". • http://www.securityfocus.com/bid/92803 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 85%CPEs: 6EXPL: 3CVE-2016-3235 – Microsoft Office OLE DLL Side Loading Vulnerability
https://notcve.org/view.php?id=CVE-2016-3235
15 Jun 2016 — Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability." Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3 y Visio Viewer 2010 no maneja adecuadamente la carga de librerías, lo que permite a usuarios locales obtener privilegios a través de una aplicación ... • https://packetstorm.news/files/id/139671 •