Lucene search
+L

9 matches found

exploitdb
exploitdb
added 2025/04/03 12:0 a.m.342 views

Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure

Exploit Title: Microsoft Office 2019 MSO Build 1808 - NTLMv2 Hash Disclosure Exploit Author: Metin Yunus Kandemir Vendor Homepage: https://www.office.com/ Software Link: https://www.office.com/ Details: https://github.com/passtheticket/CVE-2024-38200 Version: Microsoft Office 2019 MSO Build 1808...

9.1CVSS6.8AI score0.19534EPSS
Exploits2
nessus
nessus
added 2024/08/21 12:0 a.m.201 views

Security Updates for Microsoft Office Products C2R (Aug 2024)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2024-38169, CVE-2024-38170,...

9.1CVSS7.2AI score0.19534EPSS
Exploits2References9
openvas
openvas
added 2024/08/14 12:0 a.m.78 views

Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Aug 2024)

This host is missing a critical security update according to Microsoft Office Click-to-Run update August 2024. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

9.1CVSS7.3AI score0.19534EPSS
Exploits2References3
nessus
nessus
added 2024/08/13 12:0 a.m.38 views

Security Updates for Microsoft Office Products (August 2024)

The Microsoft Office Products are missing security updates. They are, therefore, affected by a spoofing vulnerability. An attacker can exploit this to gain access to sensitive data via a third party interaction. Note that Nessus has not tested for these issues but has instead relied only on the...

9.1CVSS6AI score0.19534EPSS
Exploits2References3
nvd
nvd
added 2024/08/12 1:38 p.m.33 views

CVE-2024-38200

Microsoft Office Spoofing Vulnerability...

9.1CVSS0.19534EPSS
Exploits2References1
circl
circl
added 2024/08/10 7:42 a.m.23 views

CVE-2024-38200

creationtimestamp| type| source ---|---|--- 2024-08-10 07:42:38+00:00| seen| Telegram/PejxRntyRAocNHvLUV8cSPaUmeP3nZJ2C0hxUTOLqMOlgw 2024-08-10 08:32:13+00:00| seen| https://t.me/thehackernews/5392 2024-08-10 09:24:46+00:00| seen| https://t.me/tengkorakcybercrewz/3428 2024-08-10 09:24:46+00:00|...

9.1CVSS7AI score0.19534EPSS
Exploits2References30
thn
thn
added 2024/08/10 5:35 a.m.81 views

Microsoft Warns of Unpatched Office Vulnerability Leading to Data Exposure

Microsoft has disclosed an unpatched zero-day in Office that, if successfully exploited, could result in unauthorized disclosure of sensitive information to malicious actors. The vulnerability, tracked as CVE-2024-38200 CVSS score: 7.5, has been described as a spoofing flaw that affects the...

9.1CVSS6.3AI score0.19534EPSS
Exploits2
cve
cve
added 2024/08/08 8:45 p.m.549 views

CVE-2024-38200

CVE-2024-38200 affects Microsoft Office (e.g., Office 2019 MSO Build 1808; Microsoft 365 MSO 2403/16.0.17425.20176) where Office URI schemes (eg, ms-word:ofe|u|http://…) trigger automatic NTLM authentication. The underlying issue is the Office URI handling that can fetch remote documents and caus...

9.1CVSS7.5AI score0.19534EPSS
Exploits2References1Affected Software3
cvelist
cvelist
added 2024/08/08 8:45 p.m.72 views

CVE-2024-38200 Microsoft Office Spoofing Vulnerability

...

6.5CVSS0.19534EPSS
Exploits2References1
Rows per page
Query Builder