Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

KLA11976 Multiple vulnerabilites in Microsoft Office

🗓️ 13 Oct 2020 00:00:00Reported by Kaspersky LabType 
kaspersky
 kaspersky🔗 threats.kaspersky.com👁 193 Views

Multiple vulnerabilities in Microsoft Office. Malicious users can exploit elevation of privilege, remote code execution, information disclosure, cross-site-scripting, denial of service, and security feature bypass

Related
Refs
ReporterTitlePublishedViews
Family
0day.today		Microsoft SharePoint SSI / ViewState Remote Code Execution Exploit
19 Oct 202000:00
zdt
ATTACKERKB		CVE-2020-16952 — Microsoft SharePoint Remote Code Execution Vulnerabilities
16 Oct 202000:00
attackerkb
Information Security Automation		Vulristics Vulnerability Score, Automated Data Collection and Microsoft Patch Tuesdays Q4 2020
11 Jan 202101:50
avleonov
BDU FSTEC		The vulnerability of the Base3D component of the Windows operating system, which allows a hacker to execute arbitrary code
20 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of the Click-to-Run components of Microsoft Office and Office 365 allows attackers to enhance their privileges.
20 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft Word’s text editor, related to errors in processing files with the .LNK extension, allows a hacker to execute arbitrary code.
20 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft Excel’s spreadsheet editor, related to errors in memory object handling, allows a hacker to execute arbitrary code.
20 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server lies in the lack of security measures for website structures, allowing attackers to execute cross-site scripting attacks.
22 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server lies in the lack of security measures for website structures, allowing attackers to execute cross-site scripting attacks.
22 Oct 202000:00
bdu_fstec
BDU FSTEC		The vulnerability of Microsoft SharePoint Server, Microsoft SharePoint Foundation, and Microsoft SharePoint Enterprise Server lies in the lack of security measures for website structures, allowing attackers to execute cross-site scripting attacks.
22 Oct 202000:00
bdu_fstec
Rows per page
SourceLink
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16928
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16929
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16941
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16946
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16947
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16944
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16945
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16948
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16949
portalwww.portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-16942
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
02 Apr 2025 00:00Current
9.6High risk
Vulners AI Score9.6
CVSS 3.18.7 - 8.8
CVSS 29.3
EPSS0.70894
SSVC
microsoft officevulnerabilitieselevation of privilegeremote code executioninformation disclosurecross-site-scriptingdenial of servicesecurity feature bypassmicrosoft excelmicrosoft sharepointmicrosoft outlookmicrosoft wordbase3daccess connectivity engine
193