Multiple vulnerabilities in Microsoft Office

Description

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
3. An information disclosure vulnerability in Microsoft SharePoint Server can be exploited remotely to obtain sensitive information.

Original advisories

• CVE-2024-30044

• CVE-2024-30042
• CVE-2024-30043

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

• Microsoft-Office
• Microsoft-Excel
• Microsoft-SharePoint

CVE list

• CVE-2024-30044
  high
• CVE-2024-30042
  critical
• CVE-2024-30043
  critical

KB list

• 5002599
• 5002596
• 5002598
• 5002503
• 5002587

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com