CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1602 matches found

RedhatCVE•added 2025/02/05 5:52 p.m.•16 views

CVE-2019-5030

A buffer overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro MR1 7,0,2019,0220. While parsing a document text info container, the TxMasterStyleAtom::parse function is incorrectly checking the bounds corresponding to...

8.8CVSS7.3AI score0.02866EPSS

Exploits1References1

RedhatCVE•added 2025/02/04 11:14 p.m.•6 views

CVE-2024-39804

A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then ma...

7.1CVSS6.8AI score0.00864EPSS

Exploits1References1

Positive Technologies•added 2025/01/14 12:0 a.m.•3 views

PT-2025-1240 · Microsoft · Office Word +4

Name of the Vulnerable Software and Affected Versions: Microsoft Office versions prior to the fixed version Microsoft 365 Apps for Enterprise versions prior to the fixed version Description: The issue is related to the use of an unreliable path search in Microsoft Office and Microsoft 365 Apps fo...

7.8CVSS8.7AI score0.00917EPSS

Exploits0References7

Microsoft KB•added 2025/01/07 12:0 a.m.•5 views

January 7, 2025, update for PowerPoint 2016 (KB5002632)

January 7, 2025, update for PowerPoint 2016 KB5002632 This article describes update 5002632 for Microsoft PowerPoint 2016 that was released on January 7, 2025.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't...

6.4AI score

Exploits0

OSV•added 2024/12/18 11:15 p.m.•2 views

CVE-2024-39804

9.1CVSS5.8AI score0.00864EPSS

Exploits1References2

NVD•added 2024/12/18 11:15 p.m.•34 views

CVE-2024-39804

9.1CVSS0.00864EPSS

Exploits1References2

Cvelist•added 2024/12/18 10:37 p.m.•24 views

CVE-2024-39804

7.1CVSS0.00864EPSS

Exploits1References1

Vulnrichment•added 2024/12/18 10:37 p.m.•8 views

CVE-2024-39804

7.1CVSS6.9AI score0.00864EPSS

Exploits1References1

CVE•added 2024/12/18 10:37 p.m.•81 views

CVE-2024-39804

CVE-2024-39804 concerns Microsoft PowerPoint 16.83 on macOS. Talos/Cisco documents describe a library-injection vulnerability enabled by libraries loaded via relative paths and the hardened runtime with the entitlement com.apple.security.cs.disable-library-validation set to true. An attacker coul...

9.1CVSS6.8AI score0.00864EPSS

Exploits1References2Affected Software1

Zero Day Initiative•added 2024/11/14 12:0 a.m.•6 views

Microsoft Office PowerPoint PPTX File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00825EPSS

Exploits0References1

BDU FSTEC•added 2024/10/08 12:0 a.m.•4 views

The vulnerability of the Microsoft PowerPoint presentation preparation program lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft PowerPoint presentation preparation program is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.5AI score0.00929EPSS

Exploits0References3

BDU FSTEC•added 2024/09/16 12:0 a.m.•3 views

The vulnerability of the Microsoft PowerPoint presentation preparation and viewing software for the Mac OS allows a hacker to circumvent existing security restrictions.

The vulnerability of the Microsoft PowerPoint presentation preparation and viewing software for the Mac OS is related to improper verification of the cryptographic signature. Exploiting this vulnerability can allow an attacker to circumvent existing security restrictions using a specially created...

7.1CVSS5.5AI score0.00864EPSS

Exploits1References5Affected Software1

The Hacker News•added 2024/09/03 4:1 a.m.•26 views

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

Eight vulnerabilities have been uncovered in Microsoft applications for macOS that an adversary could exploit to gain elevated privileges or access sensitive data by circumventing the operating system's permissions-based model, which revolves around the Transparency, Consent, and Control TCC...

7.3AI score

Exploits0

CNVD•added 2024/08/20 12:0 a.m.•10 views

Microsoft Office PowerPoint Resource Management Error Vulnerability

Microsoft Office PowerPoint is an American Microsoft Microsoft company's software for creating, presentations PPT. A resource management error vulnerability exists in Microsoft Office PowerPoint. An attacker could exploit this vulnerability to execute arbitrary code on the system...

7.8CVSS7.4AI score0.00929EPSS

Exploits0References1

CNNVD•added 2024/08/19 12:0 a.m.•3 views

Microsoft Office PowerPoint 数据伪造问题漏洞

Microsoft Office PowerPoint is a software used to create, presentations PPT by Microsoft Corporation USA. A data forgery vulnerability exists in Microsoft Office PowerPoint version 16.83, which stems from a specially crafted library in the macOS version that can be exploited to gain access to...

9.1CVSS6.7AI score0.00864EPSS

Exploits1References3

Talos•added 2024/08/19 12:0 a.m.•21 views

Microsoft PowerPoint for macOS library injection vulnerability

Talos Vulnerability Report TALOS-2024-1974 Microsoft PowerPoint for macOS library injection vulnerability August 19, 2024 CVE Number CVE-2024-39804 SUMMARY A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint’s acces...

9.1CVSS6.7AI score0.00864EPSS

Exploits1

Tenable Nessus•added 2024/08/15 12:0 a.m.•34 views

Security Updates for Microsoft PowerPoint Products (August 2024)

The Microsoft PowerPoint Products are missing a security update. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2024-38171 %NASLMINLEVEL 8090...

7.8CVSS6.6AI score0.00929EPSS

Exploits0References2

OpenVAS•added 2024/08/14 12:0 a.m.•30 views

Microsoft PowerPoint 2016 RCE Vulnerability (KB5002586)

This host is missing an important security update according to Microsoft KB5002586 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.8CVSS7.9AI score0.00929EPSS

Exploits0References1

OpenVAS•added 2024/08/14 12:0 a.m.•31 views

Microsoft Office for Mac Multiple Remote Code Execution Vulnerabilities (Aug 2024) - Mac OS X

This host is missing an important security update for Microsoft Office 2021 for Mac according to Microsoft security update August 2024 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.8CVSS7.9AI score0.00929EPSS

Exploits0References1

OSV•added 2024/08/13 6:15 p.m.•2 views

CVE-2024-38171

Microsoft PowerPoint Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.00929EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by