Description
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
- A spoofing vulnerability in Skype for Business and Lync can be exploited remotely to spoof user interface.
- A denial of service vulnerability in Skype for Business and Lync can be exploited remotely to cause denial of service.
- An information disclosure vulnerability in Microsoft SharePoint can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in Microsoft SharePoint can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Teams iOS can be exploited remotely to obtain sensitive information.
Original advisories
- CVE-2021-24069
- CVE-2021-24072
- CVE-2021-24073
- CVE-2021-24067
- CVE-2021-24070
- CVE-2021-24099
- CVE-2021-24071
- CVE-2021-1726
- CVE-2021-24068
- CVE-2021-24114
Exploitation
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2021-24066 critical
- CVE-2021-24069 critical
- CVE-2021-24072 critical
- CVE-2021-24073 high
- CVE-2021-24067 critical
- CVE-2021-24070 critical
- CVE-2021-24099 high
- CVE-2021-24071 high
- CVE-2021-1726 critical
- CVE-2021-24068 critical
- CVE-2021-24114 high
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!