4293 matches found
Microsoft Excel Use After Free - Local Code Execution
Titles: Microsoft Excel Use After Free - Local Code Execution Author: nu11secur1ty Date: 06/09/2025 Vendor: Microsoft Software: https://www.microsoft.com/en/microsoft-365/excel?market=af Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27751 Versions: MS Excel 2016, MS Office...
SUSE-SU-2025:01946-1 Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.11 MFSA 2025-46, bsc1243353: - CVE-2025-5262: Double-free in libvpx encoder bmo1962421 - CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content bmo1960745 -...
CVE-2025-47171
Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally...
CVE-2025-47173
Improper input validation in Microsoft Office allows an unauthorized attacker to execute code locally...
Important: thunderbird
Issue Overview: An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability affects Firefox 138.0.4, Firefox ESR 128.10.1, and Firefox ESR 115.23.1. CVE-2025-4918 An attacker was able to perform an out-of-bounds read or write on a JavaScript...
Amazon Linux 2 : thunderbird (ALAS-2025-2873)
The version of thunderbird installed on the remote host is prior to 128.11.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2873 advisory. An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability...
Amazon Linux 2 : firefox (ALASFIREFOX-2025-039)
The version of firefox installed on the remote host is prior to 128.11.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2025-039 advisory. An attacker was able to perform an out-of-bounds read or write on a JavaScript Promise object. This vulnerability...
CVE-2025-47957
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-47953
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-47176
'.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally...
CVE-2025-47175
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally...
CVE-2025-47174
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-47173
Improper input validation in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-47171
Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally...
CVE-2025-47170
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-47169
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-47168
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2025-47167
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-47165
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-47164
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...