Lucene search
K

4316 matches found

Microsoft CVE
Microsoft CVE
added 2025/12/09 8:0 a.m.6 views

Microsoft Office Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office allows an unauthorized attacker to execute code locally...

8.4CVSS7.3AI score0.00399EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.2 views

MailEnable 代码问题漏洞

MailEnable is a commercial email server software designed for Windows operating systems that provides end-to-end email hosting and collaboration solutions. MailEnable suffers from a code issue vulnerability that stems from an insecure DLL loading mechanism that can be exploited by an attacker to...

8.5CVSS7.5AI score0.00158EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.2 views

PT-2025-50181

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A use after free condition exists in Microsoft Office. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary code and...

8.4CVSS7.3AI score0.00391EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.5 views

PT-2025-50176

Name of the Vulnerable Software and Affected Versions Microsoft Office Access affected versions not specified Description A relative path traversal issue exists in Microsoft Office Access. This allows an unauthorized attacker to execute code locally. The issue can also allow remote attackers to...

7.8CVSS7.3AI score0.00552EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50180

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can allow an unauthorized attacker to execute code locally. This could enable remote attackers ...

7.8CVSS7.2AI score0.00507EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50178

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A type confusion issue exists in Microsoft Office that could allow an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary code and...

8.4CVSS7.2AI score0.00399EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50187

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel. This allows a local attacker to execute code. The issue enables remote attackers to execute arbitrary code and...

7.8CVSS7.1AI score0.00596EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-50150

Name of the Vulnerable Software and Affected Versions Microsoft Windows PowerShell versions prior to December 17, 2025 Description The issue is a command injection flaw in Windows PowerShell that allows an unauthorized attacker to execute code locally. The flaw stems from improper neutralization ...

7.8CVSS8.3AI score0.01466EPSS
Exploits5References43
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50183

Name of the Vulnerable Software and Affected Versions Microsoft Office Word affected versions not specified Description A use after free condition exists in Microsoft Office Word. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitrary...

7.8CVSS7.3AI score0.00578EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50184

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can occur. This can allow an unauthorized attacker to execute code locally. The issue enables...

7.8CVSS7.3AI score0.00472EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.2 views

PT-2025-50201

Name of the Vulnerable Software and Affected Versions GitHub Copilot for JetBrains affected versions not specified Description The software is susceptible to a command injection issue due to improper neutralization of special elements used in commands. This allows an unauthorized attacker to...

8.4CVSS8.4AI score0.0032EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.2 views

PT-2025-50185

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An issue exists in Microsoft Office Excel where an untrusted pointer dereference can occur. This can allow an unauthorized attacker to execute code locally. The issue enables...

7.8CVSS7.3AI score0.00472EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.2 views

PT-2025-50177

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description A use after free condition exists in Microsoft Office Excel. This allows an unauthorized attacker to execute code locally. The issue enables remote attackers to execute arbitra...

7.8CVSS7.3AI score0.0064EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.5 views

Security Updates for Microsoft Office Online Server (December 2025)

The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerabilities: - Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.6AI score0.00596EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/05 3:27 p.m.5 views

CVE-2025-54160

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS7.5AI score0.0018EPSS
Exploits0References1
NVD
NVD
added 2025/12/04 4:16 p.m.5 views

CVE-2025-54158

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00168EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 4:16 p.m.2 views

CVE-2025-54158

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.1AI score0.00168EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/04 3:14 p.m.17 views

CVE-2025-54160

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.0018EPSS
Exploits0References1
CVE
CVE
added 2025/12/04 3:14 p.m.9 views

CVE-2025-54160

CVE-2025-54160 affects Synology BeeDrive for desktop before 1.4.2-13960, where an improper limitation of a pathname to a restricted directory (path traversal) allows a local user to execute arbitrary code via unspecified vectors. The issue relates to BeeDrive’s handling of file paths and is explo...

7.8CVSS7.1AI score0.0018EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/04 3:13 p.m.2 views

CVE-2025-54158

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS7.3AI score0.00168EPSS
Exploits0References1
Rows per page
Query Builder