37 matches found
vulnerabilities present in Microsoft Office
Microsoft has identified vulnerabilities in various Office products such as Sharepoint, Word, Project, and Excel. A malicious individual can exploit these vulnerabilities to carry out attacks that can cause various types of damage, as described in the tables below. For successful exploitation, th...
Description of the security update for Office Online Server: June 9, 2026 (KB5002875)
None None...
Description of the security update for Office Online Server: May 12, 2026 (KB5002871)
None None...
Security Updates for Microsoft Office Online Server (May 2026)
The Microsoft Office Online Server or Office Web Apps installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 -...
Security Updates for Microsoft Excel Products (May 2026)
The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 - Heap-based buffer overflow in Microsoft Office Excel allows a...
Description of the security update for Office Online Server: April 14, 2026 (KB5002855)
None None...
Security Updates for Microsoft Excel Products C2R (April 2026)
The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-32189, CVE-2026-32197, CVE-2026-32198, CVE-2026-32199 - Out-of-boun...
Security Updates for Microsoft Office Products (March 2026) (macOS)
The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the march-10-2026 advisory. - Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-26113 - Use after free in...
Security Updates for Microsoft Excel Products C2R (March 2026)
The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Remote code execution vulnerabilities that an attacker can exploit to bypass authentication and execute unauthorized arbitrary commands. CVE-2026-26107, CVE-2026-26108,...
Security Updates for Office Online Server (March 2026)
The Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-26107 - Heap-based buffer overflow in...
Description of the security update for Office Online Server: February 10, 2026 (KB5002835)
None None...
Security Updates for Microsoft Office Online Server (February 2026)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. CVE-2026-21258 -...
Security Updates for Microsoft Office Products (January 2026) (macOS)
The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the january-13-2026 advisory. - Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-20952, CVE-2026-20953 - Integer...
Security Updates for Microsoft Office Online Server (December 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Description of the security update for Office Online Server: November 11, 2025 (KB5002801)
None None...
Security Updates for Microsoft Office Online Server (November 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. CVE-2025-60726 - Out-of-boun...
Description of the security update for Office Online Server: October 14, 2025 (KB5002797)
None None...
Security Updates for Microsoft Office Online Server (October 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities. - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2025-59223, CVE-2025-59224, CVE-2025-5922...
EUVD-2024-23533
Malicious code in bioql PyPI...
Security Updates for Microsoft Excel Products (August 2025)
The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-53735, CVE-2025-53737,...