328 matches found
CVE-2023-21721
Microsoft OneNote Elevation of Privilege Vulnerability...
CVE-2023-21721
Microsoft OneNote Elevation of Privilege Vulnerability...
CVE-2023-21721
Microsoft OneNote Elevation of Privilege Vulnerability...
Privilege escalation
Microsoft OneNote Elevation of Privilege Vulnerability...
CVE-2023-21721
CVE-2023-21721 is a Microsoft OneNote vulnerability categorized as a spoofing/elevation-of-privilege issue. The referenced MSRC entry labels it as OneNote Spoofing Vulnerability, with a CVSSv3 base score of 6.5 (I = HIGH, A = NONE, C = NONE, V = NETWORK, UI = NONE, PR = LOW). The root cause is sp...
CVE-2023-21721 Microsoft OneNote Elevation of Privilege Vulnerability
...
Microsoft OneNote Elevation of Privilege Vulnerability
...
Microsoft Office OneNote 安全漏洞
Microsoft Office is an office software suite of products from the U.S. company Microsoft Microsoft. Commonly used components of this product include Word, Excel, Access, Powerpoint, FrontPage, and so on. A security vulnerability exists in Microsoft Office OneNote. No information about this...
PT-2023-1644 · Microsoft · Office Onenote
Name of the Vulnerable Software and Affected Versions: Microsoft OneNote affected versions not specified Description: The issue is related to errors in the representation of information by the user interface of Microsoft OneNote. Exploitation of this issue may allow a remote attacker to elevate...
Post-Macro World Sees Rise in Microsoft OneNote Documents Delivering Malware
In a continuing sign that threat actors are adapting well to a post-macro world, it has emerged that the use of Microsoft OneNote documents to deliver malware via phishing attacks is on the rise. Some of the notable malware families that are being distributed using this method include AsyncRAT,...
Post-Macro World Sees Rise in Microsoft OneNote Documents Delivering Malware
In a continuing sign that threat actors are adapting well to a post-macro world, it has emerged that the use of Microsoft OneNote documents to deliver malware via phishing attacks is on the rise. Some of the notable malware families that are being distributed using this method include AsyncRAT,...
Rapid7 Observes Use of Microsoft OneNote to Spread Redline Infostealer Malware
Author: Thomas Elkins Contributors: Matt Green, James Dunne, and Hernan Diaz Rapid7 routinely conducts research into the wide range of techniques that threat actors use to conduct malicious activity. One objective of this research is to discover new techniques being used in the wild, so we can...
OneNote File Remains in an Archive State After Saving From Backup
Challenge After using the Save document function to save a OneNote Notebook as a file, attempting to open the resulting .onepkg file using on-premises OneNote, most notably in OneNote 2016 and OneNote 2019, the following warning is observed: This section can't be edited because it's in an archive...
Security Updates for Microsoft Office Products (Nov 2022) (macOS)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability in Microsoft Word. CVE-2022-41061 - A remote code execution vulnerability in Microsoft Office Graphics. CVE-2022-41107 Note that Nessus has n...
Security Updates for Microsoft OneNote C2R (December 2022)
The Microsoft OneNote Products are missing a security update. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. Th...
CVE-2022-44691
Microsoft Office OneNote Remote Code Execution Vulnerability...
CVE-2022-44691
Microsoft Office OneNote Remote Code Execution Vulnerability...
Remote code execution
Microsoft Office OneNote Remote Code Execution Vulnerability...
Microsoft Office OneNote Remote Code Execution Vulnerability
...
CVE-2022-44691 Microsoft Office OneNote Remote Code Execution Vulnerability
...