Multiple vulnerabilities in Microsoft Office

説明

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
2. A spoofing vulnerability in Microsoft Office can be exploited remotely to spoof user interface.
3. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
4. A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
5. A remote code execution vulnerability in Microsoft Office Graphics can be exploited remotely to execute arbitrary code.
6. An information disclosure vulnerability in Microsoft Office can be exploited remotely to obtain sensitive information.

オリジナルアドバイザリー

• CVE-2022-41036

• CVE-2022-38001
• CVE-2022-41037
• CVE-2022-38048
• CVE-2022-41031
• CVE-2022-38053
• CVE-2022-38049
• CVE-2022-41043
• CVE-2022-41038

エクスプロイテーション

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

関連製品

• Microsoft-Office
• Microsoft-SharePoint

CVEリスト

• CVE-2022-41036
  critical
• CVE-2022-38001
  high
• CVE-2022-41037
  critical
• CVE-2022-38048
  critical
• CVE-2022-41031
  critical
• CVE-2022-38053
  critical
• CVE-2022-38049
  critical
• CVE-2022-41043
  warning
• CVE-2022-41038
  critical

KBリスト

• 5002279
• 5002287
• 5002278
• 5002283
• 5002026
• 5002290
• 5002288
• 5002284

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com