Lucene search
K
MicrosoftOffice 2016

12 matches found

CVE
CVE
added 2024/02/13 6:2 p.m.1081 views

CVE-2024-21413

Summary of CVE-2024-21413 (Microsoft Outlook / Moniker Link): A vulnerability in Outlook where crafted Moniker Link URLs (often via file:///UNC paths) can trigger an automatic SMB access, potentially leaking the user’s NTLM hash to an attacker. Multiple PoCs on GitHub demonstrate delivering malic...

9.8CVSS9.6AI score0.9466EPSS
In wild
CVE
CVE
added 2026/06/09 5:4 p.m.135 views

CVE-2026-45456

CVE-2026-45456 affects Microsoft Office apps (notably Outlook and Word) and is caused by a resource access type confusion that can lead to local code execution. The vulnerability allows an authenticated, local attacker to run arbitrary code without user interaction, with high impact on confidenti...

8.4CVSS5.7AI score0.00438EPSS
CVE
CVE
added 2026/06/09 5:5 p.m.71 views

CVE-2026-45463

CVE-2026-45463 describes a heap-based buffer overflow in Microsoft Office that allows an attacker with local access to execute code on the affected system. The sources identify Microsoft Office and classify the flaw as a heap-based overflow with high impact (CVSSv3.1: 8.4, LOCAL access, no user i...

8.4CVSS6AI score0.00339EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.56 views

CVE-2026-44819

CVE-2026-44819 affects Microsoft Office and is described as a heap-based buffer overflow that allows a local attacker to execute code. The vulnerability is characterized by a LOCAL attack vector, LOW attack complexity, and requires user interaction, with a high impact on confidentiality, integrit...

7.8CVSS6AI score0.00455EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.41 views

CVE-2026-45474

The documents confirm CVE-2026-45474 is a Microsoft Office vulnerability described as a heap-based buffer overflow that allows an unauthenticated/unauthorized attacker to execute code locally on affected systems. Affected product is Microsoft Office, with the root cause identified as a heap-based...

8.4CVSS6AI score0.00364EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.37 views

CVE-2026-45485

CVE-2026-45485: In Microsoft Office, an out-of-bounds read leads to local information disclosure. Documents confirm the vulnerability and its impact (local disclosure) with low severity (CVSS 3.1:3.3). Exploitation details and affected component/version specifics are not provided in the supplied ...

3.3CVSS5.4AI score0.00437EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.34 views

CVE-2026-45461

CVE-2026-45461 describes a heap-based buffer overflow in Microsoft Office that allows an unauthorized attacker to execute code locally. Documents confirm the vulnerability exists in Microsoft Office and indicate a local attack vector with high impact (C: HIGH, I: HIGH, A: HIGH) and a base score o...

8.4CVSS6AI score0.00364EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.32 views

CVE-2026-45645

The provided data identify CVE-2026-45645 as a heap-based buffer overflow affecting Microsoft Office, enabling local code execution. Details show an exploit would require user interaction and has a local attack surface (attackVector: LOCAL, userInteraction: REQUIRED) with high impacts on confiden...

7.8CVSS6AI score0.00372EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.30 views

CVE-2026-45472

CVE-2026-45472 is a heap-based buffer overflow in Microsoft Office that allows an unauthorized attacker to execute code locally. The connected sources (NVD, CVE listing) corroborate a local-execution impact due to a heap overflow in Office components. No explicit root-cause details beyond the hea...

8.4CVSS6AI score0.00339EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.26 views

CVE-2026-44821

The CVE-2026-44821 entry concerns an out-of-bounds read in Microsoft Office that could allow a local attacker to disclose information. Affected software is Microsoft Office; the vulnerability is a read boundary issue in a component/file used by Office, enabling local information disclosure. The p...

5.5CVSS5.4AI score0.00465EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.26 views

CVE-2026-44824

CVE-2026-44824 affects Microsoft Office and is a heap-based buffer overflow that enables local code execution. The issue requires user interaction and has a CVSS v3.1 base score of 7.8 (HIGH) with LOCAL attack vector, no privileges required, and high impact on confidentiality, integrity, and avai...

7.8CVSS6AI score0.00455EPSS
CVE
CVE
added 2026/06/09 5:4 p.m.23 views

CVE-2026-45475

This CVE (CVE-2026-45475) concerns a heap-based buffer overflow in Microsoft Office. The description indicates an unauthorized attacker could achieve local code execution, with user interaction required and high impact on confidentiality, integrity, and availability. The provided documents do not...

7.8CVSS6AI score0.00455EPSS