Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

KLA11745 Multiple vulnerabilities in Microsoft Office

🗓️ 14 Apr 2020 00:00:00Reported by Kaspersky LabType 
kaspersky
 kaspersky🔗 threats.kaspersky.com👁 50 Views

Multiple vulnerabilities in Microsoft Office. Malicious users can gain privileges, execute arbitrary code, spoof user interface

Related
Refs
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
12 Mar 202002:20
githubexploit
GithubExploit		Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft
11 Mar 202009:13
githubexploit
GithubExploit		Exploit for CVE-2020-0976
14 Mar 202007:59
githubexploit
Information Security Automation		Microsoft Patch Tuesday April 2020: my classification script, confusing RCE in Adobe Type Manager and updates for older vulnerabilities
26 Apr 202001:24
avleonov
Information Security Automation		Microsoft Patch Tuesday May 2020: comments from VM vendors, promising stuff for phishing, troubles with SharePoint and lulz with Visual Studio
13 May 202000:49
avleonov
BDU FSTEC		Vulnerabilities of Microsoft Visio graphic editors, Microsoft Excel electronic spreadsheet editors, Microsoft PowerPoint presentation creation software, Microsoft Word text editors, the Microsoft Office and Office 365 software suite, Microsoft Outlook email client, Microsoft Publisher publishing software, Microsoft Project project management software, Microsoft Access database management systems. These vulnerabilities are related to insufficient input validation, allowing attackers to execute arbitrary code.
23 Apr 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, SharePoint Foundation, and SharePoint Enterprise Server, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting attacks.
23 Apr 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, SharePoint Foundation, and SharePoint Enterprise Server, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting attacks.
23 Apr 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, SharePoint Foundation, and SharePoint Enterprise Server, related to the lack of protective measures for website structures, allows attackers to execute cross-site scripting attacks.
23 Apr 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server and SharePoint Enterprise Server packages arises from the lack of protective measures for website structures, allowing attackers to carry out cross-site scripting attacks.
7 May 202000:00
bdu_fstec
Rows per page
SourceLink
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0984
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0980
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0961
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0924
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0925
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0926
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0927
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0920
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0923
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0906
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 Jan 2024 00:00Current
8.7High risk
Vulners AI Score8.7
CVSS 29.3
CVSS 3.15.4 - 8.8
EPSS0.31213
SSVC
microsoft officevulnerabilitiesmalicious usersprivilegesarbitrary codespoofingremote exploitationelevation of privilegecode executionxsssharepointonedrive for windows
50