Multiple vulnerabilities in Microsoft Office

Описание

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft Outlook can be exploited remotely to execute arbitrary code.
4. An information disclosure vulnerability in Microsoft SharePoint Server can be exploited remotely to obtain sensitive information.
5. A spoofing vulnerability in Microsoft Outlook can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2024-38023
  CVE-2024-38024
  CVE-2024-38094
  CVE-2024-38021
  CVE-2024-32987
  CVE-2024-38020
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Office
• Microsoft-Outlook
• Microsoft-SharePoint

Список CVE

• CVE-2024-38023
  high
• CVE-2024-38024
  high
• CVE-2024-38094
  high
• CVE-2024-38021
  critical
• CVE-2024-32987
  critical
• CVE-2024-38020
  high

Список KB

• 5002620
• 5002618
• 5002606
• 5002621
• 5002615

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com