Multiple vulnerabilities in Microsoft Office

Description

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
3. A security feature bypass vulnerability in Microsoft Excel can be exploited remotely to bypass security restrictions.
4. A denial of service vulnerability in Microsoft Outlook can be exploited remotely to cause denial of service.

Original advisories

• CVE-2022-34717

• CVE-2022-33648
• CVE-2022-33631
• CVE-2022-35742

Related products

• Microsoft-Office
• Microsoft-Outlook
• Microsoft-Excel

CVE list

• CVE-2022-34717
  critical
• CVE-2022-33648
  critical
• CVE-2022-33631
  high
• CVE-2022-35742
  critical

KB list

• 5001990
• 5002051
• 4462142
• 5002228
• 5002232
• 5002242
• 4462148

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com