CVSS: 9.8EPSS: 36%CPEs: 12EXPL: 6CVE-2023-21716 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21716
Microsoft Word Remote Code Execution Vulnerability • https://github.com/MojithaR/CVE-2023-21716-EXPLOIT.py https://github.com/Xnuvers007/CVE-2023-21716 https://github.com/gyaansastra/CVE-2023-21716 https://github.com/JMousqueton/CVE-2023-21716 https://github.com/FeatherStark/CVE-2023-21716 https://github.com/3yujw7njai/CVE-2023-21716-POC https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21716 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 1%CPEs: 12EXPL: 0CVE-2022-41060 – Microsoft Word Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41060
Microsoft Word Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41060 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2022-41061 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-41061
Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41061 •
CVSS: 5.5EPSS: 1%CPEs: 12EXPL: 0CVE-2022-41103 – Microsoft Word Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-41103
Microsoft Word Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41103 •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2021-40486 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-40486
Microsoft Word Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DOC files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40486 https://www.zerodayinitiative.com/advisories/ZDI-21-1158 •