4316 matches found
Microsoft Office Remote Code Execution Vulnerability
Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...
MailEnable 代码问题漏洞
MailEnable is a commercial email server software designed for Windows operating systems that provides end-to-end email hosting and collaboration solutions. MailEnable suffers from a code issue vulnerability that stems from an insecure DLL loading mechanism that can be exploited by an attacker to...
PT-2025-50181
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A use after free condition exists in Microsoft Office. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary code and...
PT-2025-50176
Name of the Vulnerable Software and Affected Versions Microsoft Office Access affected versions not specified Description A relative path traversal issue exists in Microsoft Office Access. This allows an unauthorized attacker to execute code locally. The issue can also allow remote attackers to...
PT-2025-50180
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can allow an unauthorized attacker to execute code locally. This could enable remote attackers ...
PT-2025-50178
Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A type confusion issue exists in Microsoft Office that could allow an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary code and...
PT-2025-50187
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel. This allows a local attacker to execute code. The issue enables remote attackers to execute arbitrary code and...
PT-2025-50150
Name of the Vulnerable Software and Affected Versions Microsoft Windows PowerShell versions prior to December 17, 2025 Description The issue is a command injection flaw in Windows PowerShell that allows an unauthorized attacker to execute code locally. The flaw stems from improper neutralization ...
PT-2025-50183
Name of the Vulnerable Software and Affected Versions Microsoft Office Word affected versions not specified Description A use after free condition exists in Microsoft Office Word. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary...
PT-2025-50184
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can occur. This can allow an unauthorized attacker to execute code locally. The issue enables...
PT-2025-50201
Name of the Vulnerable Software and Affected Versions GitHub Copilot for JetBrains affected versions not specified Description The software is susceptible to a command injection issue due to improper neutralization of special elements used in commands. This allows an unauthorized attacker to...
PT-2025-50185
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can occur. This can allow an unauthorized attacker to execute code locally. The issue enables...
PT-2025-50177
Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitra...
Security Updates for Microsoft Office Online Server (December 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-54160
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54160
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54160
CVE-2025-54160 affects Synology BeeDrive for desktop before 1.4.2-13960, where an improper limitation of a pathname to a restricted directory (path traversal) allows a local user to execute arbitrary code via unspecified vectors. The issue relates to BeeDrive’s handling of file paths and is explo...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...