Lucene search
K

264 matches found

Microsoft CVE
Microsoft CVE
added 2020/06/09 7:0 a.m.33 views

Microsoft Project Information Disclosure Vulnerability

An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable. An attacker who successfully exploited the vulnerability could view out of bound memory that potentially could contain sensitive information. Exploitation of the...

6.5CVSS2.1AI score0.0548EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/06/09 12:0 a.m.33 views

Microsoft Information Disclosure Vulnerability (June 2020)

The Microsoft Project installation on the remote host is missing a security update. Therefore, An information disclosure vulnerability exists in Microsoft Project due to an uninitialized variable. An attacker could read out of bounds memory to disclose potentially sensitive information. C Tenable...

6.5CVSS7AI score0.0548EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.42 views

Security Updates for Microsoft Project Server (April 2020)

The Microsoft Project Server installation on the remote host is missing a security update. It is, therefore, affected by a cross-site-scripting XSS vulnerability. Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An...

5.4CVSS6AI score0.01515EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.37 views

Microsoft Project 2016 Remote Code Execution Vulnerability (KB4484269)

This host is missing an important security update according to Microsoft KB4484269 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.4AI score0.0861EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.238 views

Microsoft Project 2013 Remote Code Execution Vulnerability (KB4484125)

This host is missing an important security update according to Microsoft KB4484125 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.4AI score0.0861EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.36 views

Microsoft Project 2010 Remote Code Execution Vulnerability (KB4484132)

This host is missing an important security update according to Microsoft KB4484132 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS8.4AI score0.0861EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2020/04/14 7:0 a.m.70 views

Description of the security update for Project 2010: April 14, 2020

Description of the security update for Project 2010: April 14, 2020 Summary This security update resolves a remote code execution vulnerability that exists when Microsoft Office improperly loads arbitrary type libraries. To learn more about the vulnerability, see Microsoft Common Vulnerabilities...

8.8CVSS8.7AI score0.0861EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/14 12:0 a.m.34 views

Microsoft Project RCE Vulnerability (April 2020)

The Microsoft Project installation on the remote host is missing a security update. Therefore, a remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries. An attacker could then install programs; view, change, or delete data; or create new account...

8.8CVSS8.6AI score0.0861EPSS
Exploits0References4
Microsoft KB
Microsoft KB
added 2020/04/13 12:0 a.m.23 views

MS15-116: Description of the security update for Project 2013: November 10, 2015

MS15-116: Description of the security update for Project 2013: November 10, 2015 Summary This security update resolves vulnerabilities in Microsoft Project 2013 that could allow remote code execution if a user opens a specially crafted Microsoft Office file. To learn more about these...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/09/17 12:0 a.m.7 views

The vulnerabilities of Microsoft Office packages, Office 365, and the Microsoft Project project management software are due to insufficient validation of input data, allowing attackers to execute arbitrary commands.

The vulnerability of Microsoft Office packages, Office 365, and the Microsoft Project project management software exists due to insufficient verification of input data. Exploiting this vulnerability can allow attackers to execute arbitrary commands using a specially created file...

7.8CVSS5.9AI score0.03803EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2019/09/11 12:0 a.m.38 views

Microsoft Project 2013 Security Feature Bypass Vulnerability (KB4464548)

This host is missing a critical security update according to Microsoft KB4464548 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.7AI score0.03803EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2019/09/11 12:0 a.m.35 views

Microsoft Project 2010 Security Feature Bypass Vulnerability (KB4461631)

This host is missing an important security update according to Microsoft KB4461631 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS7.6AI score0.03803EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/09/11 12:0 a.m.41 views

Security Updates for Microsoft Project (September 2019)

The Microsoft Project installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A security feature bypass vulnerability exists when Microsoft Office improperly handles input. An attacker who successfully exploited the vulnerability...

7.8CVSS7.6AI score0.03803EPSS
Exploits0References4
Microsoft Security Update
Microsoft Security Update
added 2019/09/10 10:0 a.m.17 views

Security Update for Microsoft Project 2013 (KB4464548) 32-Bit Edition

A security vulnerability exists in Microsoft Project 2013 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

3.3AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2019/09/10 10:0 a.m.24 views

Security Update for Microsoft Project 2013 (KB4464548) 64-Bit Edition

A security vulnerability exists in Microsoft Project 2013 64-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

3.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/09/10 7:0 a.m.54 views

Description of the security update for Project 2013: September 10, 2019

Description of the security update for Project 2013: September 10, 2019 Summary This security update resolves a security feature bypass vulnerability that exists when Microsoft Office incorrectly handles input. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and...

7.8CVSS7.1AI score0.03803EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/09/10 7:0 a.m.44 views

Description of the security update for Project 2010: September 10, 2019

Description of the security update for Project 2010: September 10, 2019 Summary This security update resolves a security feature bypass vulnerability that exists when Microsoft Office incorrectly handles input. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and...

7.8CVSS7.6AI score0.03803EPSS
Exploits0
Symantec
Symantec
added 2019/09/10 12:0 a.m.38 views

Microsoft Office CVE-2019-1264 Security Bypass Vulnerability

Description Microsoft Office is prone to a security bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions; this may aid in launching further attacks. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office 2010 Servic...

0.4AI score0.03803EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/06/11 12:0 a.m.49 views

Security Updates for Microsoft Project Server (June 2019)

The Microsoft Project Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A cross-site-scripting XSS vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an...

5.4CVSS5.9AI score0.01662EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/12/04 12:0 a.m.7 views

The vulnerability of the Microsoft Project project management software and the Office 365 suite, related to the execution of operations outside the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Project project management software and the Office 365 suite arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created file...

10CVSS8.4AI score0.19268EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder