CVE-2025-30190

Malicious content at office documents can be used to inject script code when editing a document. Unintended actions can be executed in the context of the users account, including exfiltration of sensitive information. Please deploy the provided updates and patch releases. No publicly available...

Description of the security update for Office 2016: February 11, 2025 (KB5002179)

Description of the security update for Office 2016: February 11, 2025 KB5002179 Summary This security update resolves a Microsoft Excel information disclosure vulnerability and Microsoft Excel remote code execution vulnerability. To learn more about the vulnerabilities, see the following security...

Description of the security update for SharePoint Server 2019: January 14, 2025 (KB5002666)

Description of the security update for SharePoint Server 2019: January 14, 2025 KB5002666 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability and Microsoft SharePoint Server spoofing vulnerability. To learn more about the vulnerabilities, see th...

Description of the security update for SharePoint Server Subscription Edition: October 8, 2024 (KB5002649)

Description of the security update for SharePoint Server Subscription Edition: October 8, 2024 KB5002649 Summary This security update resolves a Microsoft SharePoint elevation of privilege vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

Description of the security update for Office Online Server: May 14, 2024 (KB5002503)

Description of the security update for Office Online Server: May 14, 2024 KB5002503 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see the following security advisory:​​​​ Microsoft Excel Remote Code Execution...

Description of the security update for SharePoint Server 2019: January 9, 2024 (KB5002539)

Description of the security update for SharePoint Server 2019: January 9, 2024 KB5002539 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2024-2131...

End of support for Office 2016 and Office 2019

None None...

Description of the security update for Microsoft Exchange Server 2016: November 14, 2023 (KB5032147)

Description of the security update for Microsoft Exchange Server 2016: November 14, 2023 KB5032147 Notice See also KB 5032146 for additional information about issues that are fixed in this security update. This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn...

Description of the security update for Outlook 2016: September 12, 2023 (KB5002499)

Description of the security update for Outlook 2016: September 12, 2023 KB5002499 Summary This security update resolves a Microsoft Outlook information disclosure vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2023-36763. Note: To appl...

Description of the security update for Excel 2016: July 11, 2023 (KB5002426)

Description of the security update for Excel 2016: July 11, 2023 KB5002426 Summary This security update resolves a Microsoft Excel information disclosure vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2023-33162. Note: To apply this...

Description of the security update for Microsoft Exchange Server 2019: June 13, 2023 (KB5026261)

Description of the security update for Microsoft Exchange Server 2019: June 13, 2023 KB5026261 This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures CVE: CVE-2023-28310 -...

Description of the security update for SharePoint Enterprise Server 2016: March 14, 2023 (KB5002368)

Description of the security update for SharePoint Enterprise Server 2016: March 14, 2023 KB5002368 Summary This security update resolves a Microsoft SharePoint Server spoofing vulnerability. To learn more about the vulnerability, see ​​​​Microsoft Common Vulnerabilities and Exposures...

End of support for Office 2013

End of support for Office 2013 Support for Office 2013 ended on April 11, 2023 and there will be no extension and no extended security updates. All of your Office 2013 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks.Buy or try...

Description of the security update for SharePoint Enterprise Server 2016 Language Pack: February 14, 2023 (KB5002325)

Description of the security update for SharePoint Enterprise Server 2016 Language Pack: February 14, 2023 KB5002325 Summary This security update resolves a Microsoft SharePoint Server elevation of privilege vulnerability and Microsoft Word remote code execution vulnerability. To learn more about...

Description of the security update for SharePoint Enterprise Server 2013: February 14, 2023 (KB5002312)

Description of the security update for SharePoint Enterprise Server 2013: February 14, 2023 KB5002312 Summary This security update resolves a Microsoft SharePoint Server elevation of privilege vulnerability and Microsoft Word remote code execution vulnerability. To learn more about the...

Description of the security update for Microsoft Exchange Server 2019: January 10, 2023 (KB5022193)

Description of the security update for Microsoft Exchange Server 2019: January 10, 2023 KB5022193 This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures CVE CVE-2023-21745...

Description of the security update for SharePoint Server Subscription Edition: May 10, 2022 (KB5002194)

Description of the security update for SharePoint Server Subscription Edition: May 10, 2022 KB5002194 Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

Description of the security update for Excel 2016: May 10, 2022 (KB5002196)

Description of the security update for Excel 2016: May 10, 2022 KB5002196 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-29110. Note: To apply this...

Description of the security update for Office Web Apps Server 2013: April 12, 2022 (KB5002169)

Description of the security update for Office Web Apps Server 2013: April 12, 2022 KB5002169 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-26901. Note:...

Critical ForgeRock Access Management Vulnerability

Malicious cyber actors are actively exploiting a pre-authorization remote code execution vulnerability CVE-2021-35464 in ForgeRock Access Management—a commercial open access management solution that is based on OpenAM, an open-source access management solution. An attacker exploiting this...