Office Security Vulnerabilities
Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035, Acronis Agent (Windows) before build 27147, Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True.....
7.8CVSS
7.8AI Score
0.0004EPSS
Local privilege escalation due to unrestricted loading of unsigned libraries. The following products are affected: Acronis Cyber Protect Home Office (macOS) before build 39605, Acronis True Image 2021 (macOS) before build...
7.8CVSS
7.8AI Score
0.0004EPSS
Local privilege escalation due to race condition on application startup. The following products are affected: Acronis Cyber Protect Home Office (macOS) before build 39605, Acronis True Image 2021 (macOS) before build...
7CVSS
7AI Score
0.0004EPSS
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build...
7.3CVSS
7.4AI Score
0.0004EPSS
Local privilege escalation via named pipe due to improper access control checks. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035, Acronis Agent (Windows) before build 27147, Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True...
7.8CVSS
7.8AI Score
0.0004EPSS
Local privilege escalation due to DLL hijacking vulnerability in Acronis Media Builder service. The following products are affected: Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build...
7.3CVSS
7.3AI Score
0.0004EPSS
8.8CVSS
8.6AI Score
0.034EPSS
7.8CVSS
7.8AI Score
0.03EPSS
9.6CVSS
9.2AI Score
0.031EPSS
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege...
6.5CVSS
6.6AI Score
0.001EPSS
5.5CVSS
5.5AI Score
0.001EPSS
5.5CVSS
5.5AI Score
0.002EPSS
7.8CVSS
7.7AI Score
0.279EPSS
7.8CVSS
7.8AI Score
0.006EPSS
DLL hijacking could lead to denial of service. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035, Acronis Agent (Windows) before build 27305, Acronis Cyber Protect Home Office (Windows) before build...
5.5CVSS
5.4AI Score
0.001EPSS
The “WPO365 | LOGIN” WordPress plugin (up to and including version 15.3) by wpo365.com is vulnerable to a persistent Cross-Site Scripting (XSS) vulnerability (also known as Stored or Second-Order XSS). Persistent XSS vulnerabilities occur when the application stores and retrieves client supplied...
6.1CVSS
6AI Score
0.001EPSS
7.8CVSS
7.6AI Score
0.029EPSS
7.8CVSS
7.8AI Score
0.008EPSS
6.1CVSS
7.7AI Score
0.007EPSS
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition to the other servers by processing a specially crafted XML...
6.5CVSS
6.6AI Score
0.002EPSS
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition by processing a specially crafted XML...
7.5CVSS
7.4AI Score
0.002EPSS
7.8CVSS
7.6AI Score
0.096EPSS
5.5CVSS
5.8AI Score
0.0004EPSS
5.5CVSS
6AI Score
0.0004EPSS
7.8CVSS
7.5AI Score
0.096EPSS
7.8CVSS
7.6AI Score
0.096EPSS
7.1CVSS
7.1AI Score
0.017EPSS
7.8CVSS
7.6AI Score
0.096EPSS
7.8CVSS
7.6AI Score
0.019EPSS
7.8CVSS
7.5AI Score
0.096EPSS
7.8CVSS
7.6AI Score
0.019EPSS
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVRDL unpacking module component used in certain F-Secure products can crash while scanning a fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in...
6.5CVSS
6.4AI Score
0.001EPSS
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the AVPACK module component used in certain F-Secure products can crash while scanning a fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS).....
6.5CVSS
6.4AI Score
0.001EPSS
7.6CVSS
4AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.014EPSS
7.8CVSS
7.5AI Score
0.049EPSS
7.8CVSS
7.5AI Score
0.017EPSS
7.8CVSS
7.5AI Score
0.014EPSS
SAP Analysis for Microsoft Office - version 2.8, allows an attacker with high privileges to read sensitive data over the network, and gather or change information in the current system without user interaction. The attack would not lead to an impact on the availability of the system, but there...
6.5CVSS
6.2AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.018EPSS
7.8CVSS
7.7AI Score
0.152EPSS
5.3CVSS
6.6AI Score
0.002EPSS
7.8CVSS
7.8AI Score
0.066EPSS
8.2CVSS
7.8AI Score
0.004EPSS
7.8CVSS
8.1AI Score
0.066EPSS
7.8CVSS
8.1AI Score
0.013EPSS
7.8CVSS
7.7AI Score
0.106EPSS
7.3CVSS
7.2AI Score
0.081EPSS