Lucene search
K

368 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.15 views

Security Updates for Microsoft Office Products (June 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the june-16-2026 advisory. - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. CVE-2026-44819, CVE-2026-44824,...

8.4CVSS7.5AI score0.00629EPSS
Exploits0References27
RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.10 views

CVE-2026-44820

Integer underflow wrap or wraparound in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.7AI score0.00372EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 5:5 p.m.37 views

CVE-2026-45459

The CVE-2026-45459 entry concerns Microsoft Excel. A protection-mechanism failure in Excel is described as allowing a local attacker to bypass a security feature. According to the available data, the vulnerability has a low base score (CVSS 3.1: 3.3), with LOCAL attack vector, LOW attack complexi...

3.3CVSS5.4AI score0.00371EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2026/06/09 5:5 p.m.34 views

CVE-2026-44822 Microsoft Excel Information Disclosure Vulnerability

...

8.2CVSS0.00518EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/09 5:4 p.m.3 views

CVE-2026-44823

Numeric truncation error in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.2AI score0.00372EPSS
Exploits0References2Affected Software9
Vulnrichment
Vulnrichment
added 2026/06/09 5:4 p.m.8 views

CVE-2026-44818 Microsoft Excel Remote Code Execution Vulnerability

...

7CVSS5.4AI score0.00263EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.15 views

Microsoft Office Excel 数字错误漏洞

Microsoft Excel is a spreadsheet software within the Office suite developed by the American company Microsoft. There is a code execution vulnerability in Microsoft Excel, and attackers can exploit this vulnerability to execute code locally...

7.8CVSS7.5AI score0.00372EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/06/04 6:46 p.m.27 views

Spree: CSV Formula Injection in Customer Export

Summary CSV formula injection also known as formula injection or CSV injection affects customer export. User-controlled values customer names, email addresses, and shipping addresses. When an administrator opens a crafted Export in Microsoft Excel or LibreOffice Calc, formulas embedded in user da...

6AI score
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/22 9:10 p.m.12 views

CVE-2026-41073 RT: Spreadsheet downloads vulnerable to CSV/formula injection in Microsoft Excel and similar apps

RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet CSV/formula injection vulnerability. User-controlled data in spreadsheet exports is not sanitized before being written to the output file, which can caus...

4.6CVSS5.7AI score0.00166EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/12 4:59 p.m.36 views

CVE-2026-40359 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS0.00332EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Security Updates for Microsoft Office Products (April 2026) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the april-14-2026 advisory. - Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. CVE-2026-33095, CVE-2026-33115 - Out-of-boun...

8.4CVSS6.4AI score0.00411EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/04/15 7:23 p.m.5 views

CVE-2026-32198

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00292EPSS
Exploits0References1
NVD
NVD
added 2026/04/14 6:17 p.m.4 views

CVE-2026-32198

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS0.00292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 4:58 p.m.6 views

CVE-2026-32199 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS6.2AI score0.00291EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 4:57 p.m.5 views

CVE-2026-32189 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS5.8AI score0.00372EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.9 views

PT-2026-32578

MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, the chat export feature is vulnerable to Improper Neutralization of Formula Elements in a CSV File. When an administrator exports the application chat history to an Excel file .xlsx via the...

8.8CVSS5.8AI score0.00553EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/26 2:57 p.m.3 views

CVE-2026-26109

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

8.4CVSS6AI score0.00416EPSS
Exploits0References1
CVE
CVE
added 2026/03/10 5:5 p.m.29 views

CVE-2026-26107

CVE-2026-26107 is a Microsoft Excel remote code execution vulnerability described as a use-after-free issue in Excel/Office. Affected software is Microsoft Excel within the Office suite; the underlying cause is use-after-free in Excel, enabling an attacker to execute code locally. Exploitation is...

7.8CVSS5.9AI score0.00435EPSS
Exploits0References1Affected Software5
Cvelist
Cvelist
added 2026/03/10 5:5 p.m.31 views

CVE-2026-26112 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS0.00458EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2026/03/10 2:0 p.m.12 views

Description of the security update for Office Online Server: March 10, 2026 (KB5002846)

None None...

8.4CVSS7AI score0.00493EPSS
Exploits0
Rows per page
Query Builder