284 matches found
Security Updates for Microsoft Office Products C2R (June 2026)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-44819, CVE-2026-44824, CVE-2026-45461, CVE-2026-45463,...
CVE-2026-47293
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
CVE-2026-47293
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
CVE-2026-47293 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
EUVD-2026-35575
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
CVE-2026-47293 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-47293
CVE-2026-47293 describes a use-after-free vulnerability in Microsoft Office Click-To-Run that could allow an authorized, local attacker to elevate privileges. Affected component is Microsoft Office Click-To-Run; root cause is use-after-free. The published metrics indicate a high-severity impact (...
Description of the security update for Office 2016: June 9, 2026 (KB5002878)
Description of the security update for Office 2016: June 9, 2026 KB5002878 Summary This security update resolves a Microsoft Office remote code execution vulnerability, Microsoft Office Information Disclosure Vulnerability. To learn more about the vulnerability, see the following security...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
Microsoft Office ClickToRun 资源管理错误漏洞
Microsoft Office ClickToRun is a component developed by Microsoft Corporation that allows for the download and installation of Microsoft Office products. There is a resource management vulnerability in Microsoft Office ClickToRun. Attackers can exploit this vulnerability to gain higher privileges...
PT-2026-48027
Name of the Vulnerable Software and Affected Versions Microsoft Office and Microsoft 365 Apps for Enterprise affected versions not specified Description A use-after-free issue exists in the Click-to-Run C2R service. A use-after-free occurs when an application continues to use a pointer after it h...
Security Updates for Microsoft Office Products C2R (May 2026)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-40358 - Heap-based buffer overflow in Microsoft Office allows an unauthorized...
CVE-2026-40420
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-40418
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-35436
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
EUVD-2026-29675
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
EUVD-2026-29677
Improper access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
CVE-2026-40420
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-40418
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
CVE-2026-35436
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...