Lucene search
+L

1622 matches found

Vulnrichment
Vulnrichment
added 2026/06/15 4:23 p.m.6 views

CVE-2026-8356 Stack buffer overflow in PPT presentation import

LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. Two fixed-size colour tables were filled from the file, but the write position was not reset between the two passes over the record, so a file whose...

6.9CVSS5.7AI score0.0012EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/15 4:23 p.m.11 views

CVE-2026-8356

LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. Two fixed-size colour tables were filled from the file, but the write position was not reset between the two passes over the record, so a file whose...

6.9CVSS5.7AI score0.0012EPSS
Exploits0
CVE
CVE
added 2026/06/15 4:23 p.m.21 views

CVE-2026-8356

CVE-2026-8356 : LibreOffice’s import of legacy binary PPT formats is affected. A stack buffer overflow occurs while processing a colour-replacement record: two fixed-size colour tables are filled from the file, but the write position isn’t reset between the two passes, causing writes past the end...

6.9CVSS5.7AI score0.0012EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.16 views

PT-2026-49266

Name of the Vulnerable Software and Affected Versions LibreOffice affected versions not specified Description A stack buffer overflow occurs when importing presentations in the legacy binary PPT format. The issue arises during the import of a colour-replacement record where two fixed-size colour...

6.9CVSS6.3AI score0.0012EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-8356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. Two fixed-size...

6.9CVSS6.3AI score0.0012EPSS
Exploits0References4
OSV
OSV
added 2026/06/12 12:24 p.m.10 views

OESA-2026-2614 catdoc security update

catdoc is program which reads one or more Microsoft word files and outputs text, contained insinde them to standard output. Therefore it does same work for.doc files, as unix cat command for plain ASCII files. It is now accompanied by xls2csv - program which converts Excel spreadsheet into...

8.4CVSS8.3AI score0.00273EPSS
Exploits3References4
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.15 views

Microsoft Excel for Android 权限许可和访问控制问题漏洞

Microsoft Office is a suite of office software products developed by Microsoft Corporation in the United States. Common components of this product include Word, Excel, Access, PowerPoint, and FrontPage. There is an access control error vulnerability in Microsoft Office. Attackers utilize this...

7.1CVSS5.9AI score0.00419EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.15 views

Microsoft Office 缓冲区错误漏洞

Microsoft Office is a suite of office software products developed by Microsoft Corporation in the United States. Common components of this product include Word, Excel, Access, PowerPoint, and FrontPage. There is a security vulnerability in Microsoft Office, which stems from a heap buffer overflow...

7.8CVSS7.4AI score0.00457EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.23 views

Microsoft Office 缓冲区错误漏洞

Microsoft Office is a suite of office software products developed by Microsoft Corporation in the United States. Common components of this product include Word, Excel, Access, PowerPoint, and FrontPage. There is a code execution vulnerability in Microsoft Office, which is caused by improper...

7.8CVSS7.8AI score0.00457EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.19 views

Microsoft Win32k 数字错误漏洞

Microsoft Win32k is a system file used by Microsoft for multi-user management in Windows. There are security vulnerabilities in Microsoft Win32k. Attackers can exploit these vulnerabilities to execute unauthorized code...

7.8CVSS7.5AI score0.00437EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:15 p.m.11 views

CVE-2026-42079

PPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, PPTAgent is vulnerable to arbitrary code execution via Python eval of LLM-generated code with builtins in scope. This issue has been patched via commit 418491a...

8.6CVSS6AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/03 4:2 p.m.11 views

CVE-2026-46722

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/19 9:23 a.m.14 views

CVE-2026-46722 XML External Entity Injection in extension "Faceted Search" (ke_search)

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/19 9:23 a.m.20 views

EUVD-2026-30859

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/19 9:23 a.m.10 views

CVE-2026-46722

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.25 views

PT-2026-41862

The OOXML parsing of the file indexer does not disable external entity resolution. A crafted xlsx or pptx document placed in an indexed directory can cause local files to be read or outbound HTTP requests to be performed, with the retrieved content being written to the search index...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.9 views

CVE-2026-41102

Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally...

7.1CVSS5.8AI score0.00292EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/12 6:30 p.m.16 views

EUVD-2026-29688

Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally...

7.1CVSS5.8AI score0.00292EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 6:17 p.m.14 views

CVE-2026-41102

Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally...

7.1CVSS0.00292EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 4:58 p.m.39 views

CVE-2026-41102 Microsoft PowerPoint for Android Spoofing Vulnerability

...

7.1CVSS0.00292EPSS
Exploits0References1
Rows per page
Query Builder