Multiple vulnerabilities in Microsoft Office

Popis

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft Office Visio can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
4. A security feature bypass vulnerability in Microsoft SharePoint Server can be exploited remotely to bypass security restrictions.
5. An information disclosure vulnerability in Microsoft Office Visio can be exploited remotely to obtain sensitive information.

Oficiální doporučení

• CVE-2023-21737

• CVE-2023-21742
• CVE-2023-21744
• CVE-2023-21734
• CVE-2023-21738
• CVE-2023-21735
• CVE-2023-21743
• CVE-2023-21741
• CVE-2023-21736

Vykořisťování

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Související produkty

• Microsoft-Office
• Microsoft-SharePoint

seznam CVE

• CVE-2023-21737
  critical
• CVE-2023-21742
  critical
• CVE-2023-21744
  critical
• CVE-2023-21734
  critical
• CVE-2023-21738
  critical
• CVE-2023-21735
  critical
• CVE-2023-21743
  high
• CVE-2023-21741
  high
• CVE-2023-21736
  critical

seznam KB

• 5002335
• 5002336
• 5002329
• 5002337
• 5002338
• 5002332
• 5002331

Zobrazit více

Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com