Lucene search
K

37 matches found

NCSC
NCSC
added 2026/06/09 6:4 p.m.13 views

vulnerabilities present in Microsoft Office

Microsoft has identified vulnerabilities in various Office products such as Sharepoint, Word, Project, and Excel. A malicious individual can exploit these vulnerabilities to carry out attacks that can cause various types of damage, as described in the tables below. For successful exploitation, th...

8.8CVSS7.3AI score0.01982EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2026/06/09 2:0 p.m.16 views

Description of the security update for Office Online Server: June 9, 2026 (KB5002875)

None None...

8.2CVSS6.7AI score0.00629EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2026/05/12 2:0 p.m.17 views

Description of the security update for Office Online Server: May 12, 2026 (KB5002871)

None None...

7.8CVSS7AI score0.00408EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/12 12:0 a.m.16 views

Security Updates for Microsoft Office Online Server (May 2026)

The Microsoft Office Online Server or Office Web Apps installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 -...

7.8CVSS6AI score0.00408EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/12 12:0 a.m.6 views

Security Updates for Microsoft Excel Products (May 2026)

The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-40359 - Heap-based buffer overflow in Microsoft Office Excel allows a...

7.8CVSS6.1AI score0.00408EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2026/04/14 2:0 p.m.18 views

Description of the security update for Office Online Server: April 14, 2026 (KB5002855)

None None...

7.8CVSS7AI score0.00411EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.5 views

Security Updates for Microsoft Excel Products C2R (April 2026)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-32189, CVE-2026-32197, CVE-2026-32198, CVE-2026-32199 - Out-of-boun...

7.8CVSS6.3AI score0.00411EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.8 views

Security Updates for Microsoft Office Products (March 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the march-10-2026 advisory. - Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-26113 - Use after free in...

8.4CVSS6.2AI score0.00545EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.2 views

Security Updates for Microsoft Excel Products C2R (March 2026)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Remote code execution vulnerabilities that an attacker can exploit to bypass authentication and execute unauthorized arbitrary commands. CVE-2026-26107, CVE-2026-26108,...

8.4CVSS6.4AI score0.01215EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.3 views

Security Updates for Office Online Server (March 2026)

The Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2026-26107 - Heap-based buffer overflow in...

8.4CVSS6.2AI score0.00493EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2026/02/10 4:0 p.m.14 views

Description of the security update for Office Online Server: February 10, 2026 (KB5002835)

None None...

7.8CVSS6.5AI score0.00596EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.6 views

Security Updates for Microsoft Office Online Server (February 2026)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. CVE-2026-21258 -...

7.8CVSS6AI score0.00596EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.9 views

Security Updates for Microsoft Office Products (January 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the january-13-2026 advisory. - Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-20952, CVE-2026-20953 - Integer...

8.4CVSS5.9AI score0.00681EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.5 views

Security Updates for Microsoft Office Online Server (December 2025)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.6AI score0.00619EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2025/11/11 8:0 a.m.19 views

Description of the security update for Office Online Server: November 11, 2025 (KB5002801)

None None...

7.8CVSS7AI score0.00568EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.5 views

Security Updates for Microsoft Office Online Server (November 2025)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. CVE-2025-60726 - Out-of-boun...

7.8CVSS6.1AI score0.00568EPSS
Exploits0References7
Microsoft KB
Microsoft KB
added 2025/10/14 2:0 p.m.10 views

Description of the security update for Office Online Server: October 14, 2025 (KB5002797)

None None...

8.4CVSS7AI score0.00612EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/14 12:0 a.m.3 views

Security Updates for Microsoft Office Online Server (October 2025)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities. - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2025-59223, CVE-2025-59224, CVE-2025-5922...

8.4CVSS8.4AI score0.00612EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-23533

Malicious code in bioql PyPI...

7.8CVSS8AI score0.00993EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.5 views

Security Updates for Microsoft Excel Products (August 2025)

The Microsoft Excel Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-53735, CVE-2025-53737,...

7.8CVSS6.7AI score0.00565EPSS
Exploits0References5
Rows per page
Query Builder