4290 matches found
Inbox COM Objects (Global Memory) Remote Code Execution Vulnerability
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally...
Security Updates for Microsoft Office Online Server (October 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities. - Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2025-59223, CVE-2025-59224, CVE-2025-5922...
PT-2025-42106
Name of the Vulnerable Software and Affected Versions Microsoft Office Word affected versions not specified Description A use after free condition exists in Microsoft Office Word that could allow an unauthorized attacker to execute code locally. Recommendations At the moment, there is no...
PT-2025-42068
Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A use-after-free issue exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a...
PT-2025-42109
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free issue exists in Microsoft Office Excel, potentially allowing an unauthorized attacker to execute code locally. This issue can be weaponized through spreadsheet...
PT-2025-42073
Name of the Vulnerable Software and Affected Versions Windows Remote Desktop affected versions not specified Description A use after free condition exists in Windows Remote Desktop. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no informatio...
PT-2025-42072
Name of the Vulnerable Software and Affected Versions Inbox COM Objects affected versions not specified Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a...
PT-2025-42110
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Microsoft Office Excel affected versions not specified Microsoft 365 Apps for Enterprise affected versions not specified Microsoft Office Long Term Servicing Channel affected versions not...
PT-2025-42071
Name of the Vulnerable Software and Affected Versions versions prior to 2025-58735 Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a newer version that...
PT-2025-42123
Name of the Vulnerable Software and Affected Versions Microsoft Office PowerPoint affected versions not specified Description A use after free issue exists in Microsoft Office PowerPoint that could allow an unauthorized attacker to execute code locally. The issue involves crafted slides and...
PT-2025-42066
Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. The issue involves the improper handling of memory,...
PT-2025-42108
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel that could allow an unauthorized attacker to execute code locally. Recommendations At the moment, there is no...
PT-2025-41963
Name of the Vulnerable Software and Affected Versions FortiClientMac versions 7.0 through 7.2.11 FortiClientMac versions 7.4.0 through 7.4.3 Description An incorrect permission assignment for a critical resource may allow a local attacker to run arbitrary code or commands via LaunchDaemon...
PT-2025-42119
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A use after free condition exists in Microsoft Office, potentially allowing an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information...
PT-2025-42070
Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A use-after-free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information abo...
PT-2025-42112
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A use-after-free condition exists in Microsoft Office. This occurs when a program attempts to use memory after it has been freed, resulting in unpredictable behavior. Exploitation of...
PT-2025-42116
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A type confusion issue in Microsoft Office Excel allows unauthorized code execution locally. Exploitation involves accessing a resource using an incompatible type. This can lea...
PT-2025-42144
Name of the Vulnerable Software and Affected Versions Internet Information Services affected versions not specified Description A race condition exists in Inbox COM Objects due to concurrent execution using a shared resource with improper synchronization. This allows an unauthorized attacker to...
PT-2025-42069
Name of the Vulnerable Software and Affected Versions Inbox COM Objects affected versions not specified Description A use after free condition exists in Inbox COM Objects. This allows an unauthorized attacker to execute code locally. Recommendations At the moment, there is no information about a...
PT-2025-42126
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel, potentially allowing an unauthorized attacker to execute code locally. Recommendations At the moment, there is no...