説明
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, spoof user interface, gain privileges, execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
- An information disclosure vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
- A security feature bypass vulnerability in Microsoft Office can be exploited remotely to bypass security restrictions.
- A spoofing vulnerability in Microsoft Office can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Microsoft Outlook can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Microsoft Office can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
- An information disclosure vulnerability in Microsoft Word can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in Microsoft SharePoint Server can be exploited remotely to gain privileges.
- Heap buffer overflow vulnerability in WebP can be exploited to cause denial of service.
オリジナルアドバイザリー
- CVE-2023-36767
- CVE-2023-41764
- CVE-2023-36763
- CVE-2023-36765
- CVE-2023-36762
- CVE-2023-36761
- CVE-2023-36764
- CVE-2023-4863
エクスプロイテーション
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
関連製品
CVEリスト
- CVE-2023-4863 critical
- CVE-2023-36766 high
- CVE-2023-36767 warning
- CVE-2023-41764 high
- CVE-2023-36763 critical
- CVE-2023-36765 critical
- CVE-2023-36762 high
- CVE-2023-36761 high
- CVE-2023-36764 critical
KBリスト
も参照してください
お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com
この脆弱性についての記述に不正確な点がありますか? お知らせください!