Multiple vulnerabilities in Microsoft Office

Описание

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability in Microsoft Office can be exploited remotely to obtain sensitive information.
2. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
4. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• CVE-2022-30172
  CVE-2022-30159
  CVE-2022-30171
  CVE-2022-30157
  CVE-2022-30173
  CVE-2022-30174
  CVE-2022-30158
  

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

• Microsoft-Office
• Microsoft-Excel
• Microsoft-SharePoint

Список CVE

• CVE-2022-30172
  high
• CVE-2022-30159
  high
• CVE-2022-30171
  high
• CVE-2022-30157
  critical
• CVE-2022-30173
  critical
• CVE-2022-30174
  critical
• CVE-2022-30158
  critical

Список KB

• 5002218
• 5002212
• 5002224
• 5002214
• 5002062
• 5002167
• 5002222
• 5002208
• 5002219
• 5002210
• 5002220

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com