6 matches found
Security Updates for Microsoft Office Products C2R (June 2021)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - Microsoft Excel remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-31939 - Microsoft...
CVE-2021-31941
Microsoft Office Graphics Remote Code Execution Vulnerability...
CVE-2021-31941 Microsoft Office Graphics Remote Code Execution Vulnerability
...
CVE-2021-31941
CVE-2021-31941 is described as a Microsoft Office Graphics Remote Code Execution vulnerability. Public records show it as HIGH severity (CVSS3.1 base 7.8) with a LOCAL attack vector and user interaction required; the OpenVAS/Nessus entries reference Microsoft Office Graphics/RCE across various Of...
Security Updates for Microsoft Office Products (June 2021)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - Microsoft Excel remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-31939 - Microsoft...
Rukovoditel Project Management App application SQL injection vulnerability in the 'global_lists/choices' page
Summary An exploitable SQL injection vulnerability exists in ‘globallists/choices’ page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability, this can be done...