6 matches found
Security Updates for Microsoft Office Products C2R (June 2021)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - Microsoft Excel remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-31939 - Microsoft...
CVE-2021-31941
Microsoft Office Graphics Remote Code Execution Vulnerability...
CVE-2021-31941
CVE-2021-31941 is described as a Microsoft Office Graphics Remote Code Execution vulnerability. Public records show it as HIGH severity (CVSS3.1 base 7.8) with a LOCAL attack vector and user interaction required; the OpenVAS/Nessus entries reference Microsoft Office Graphics/RCE across various Of...
CVE-2021-31941 Microsoft Office Graphics Remote Code Execution Vulnerability
...
Security Updates for Microsoft Office Products (June 2021)
The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - Microsoft Excel remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-31939 - Microsoft...
Rukovoditel Project Management App application SQL injection vulnerability in the 'global_lists/choices' page
Summary An exploitable SQL injection vulnerability exists in ‘globallists/choices’ page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability, this can be done...