Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-55128 (GCVE-0-2026-55128)
Vulnerability from cvelistv5 – Published: 2026-07-14 17:09 – Updated: 2026-07-14 19:41- CWE-416 - Use After Free
| URL | Tags |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerabi… | vendor-advisorypatch |
| Vendor | Product | Version | |
|---|---|---|---|
| Microsoft | Microsoft 365 Apps for Enterprise |
Affected:
16.0.1 , < https://aka.ms/OfficeSecurityReleases
(custom)
|
|
| Microsoft | Microsoft Office 2019 |
Affected:
19.0.0 , < https://aka.ms/OfficeSecurityReleases
(custom)
|
|
| Microsoft | Microsoft Office 365 for Mac |
Affected:
1.0.0 , < 16.111.26071215
(custom)
|
|
| Microsoft | Microsoft Office LTSC 2021 |
Affected:
16.0.1 , < https://aka.ms/OfficeSecurityReleases
(custom)
|
|
| Microsoft | Microsoft Office LTSC 2024 |
Affected:
16.0.0 , < https://aka.ms/OfficeSecurityReleases
(custom)
|
|
| Microsoft | Microsoft Office LTSC for Mac 2021 |
Affected:
16.0.1 , < 16.111.26071215
(custom)
|
|
| Microsoft | Microsoft Office LTSC for Mac 2024 |
Affected:
16.0.0 , < 16.111.26071215
(custom)
|
|
| Microsoft | Microsoft SharePoint Enterprise Server 2016 |
Affected:
16.0.0 , < 16.0.5561.1001
(custom)
|
|
| Microsoft | Microsoft SharePoint Server 2019 |
Affected:
16.0.0 , < 16.0.10417.20175
(custom)
|
|
| Microsoft | Microsoft SharePoint Server Subscription Edition |
Affected:
16.0.0 , < 16.0.19725.20434
(custom)
|
|
| Microsoft | Microsoft Word 2016 |
Affected:
16.0.1 , < 16.0.5561.1000
(custom)
|
{
"containers": {
"cna": {
"affected": [
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft 365 Apps for Enterprise",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "19.0.0",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office 365 for Mac",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office LTSC 2021",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office LTSC 2024",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office LTSC for Mac 2021",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office LTSC for Mac 2024",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Enterprise Server 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.5561.1001",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Server 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.10417.20175",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Server Subscription Edition",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.19725.20434",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Word 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.5561.1000",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server_2016:*:*:*:*:enterprise:*:*:*",
"versionEndExcluding": "16.0.5561.1001",
"versionStartIncluding": "16.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server_2019:*:*:*:*:*:*:*:*",
"versionEndExcluding": "16.0.10417.20175",
"versionStartIncluding": "16.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_2019:*:*:*:*:*:*:*:*",
"versionEndExcluding": "https://aka.ms/OfficeSecurityReleases",
"versionStartIncluding": "19.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:365_apps:*:*:*:*:enterprise:*:*:*",
"versionEndExcluding": "https://aka.ms/OfficeSecurityReleases",
"versionStartIncluding": "16.0.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_macos_2021:*:*:*:*:*:long_term_servicing_channel:*:*",
"versionEndExcluding": "16.111.26071215",
"versionStartIncluding": "16.0.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_2021:*:*:*:*:long_term_servicing_channel:*:*:*",
"versionEndExcluding": "https://aka.ms/OfficeSecurityReleases",
"versionStartIncluding": "16.0.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:subscription:*:*:*",
"versionEndExcluding": "16.0.19725.20434",
"versionStartIncluding": "16.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_2024:*:*:*:*:long_term_servicing_channel:*:*:*",
"versionEndExcluding": "https://aka.ms/OfficeSecurityReleases",
"versionStartIncluding": "16.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_macos_2024:*:*:*:*:*:long_term_servicing_channel:*:*",
"versionEndExcluding": "16.111.26071215",
"versionStartIncluding": "16.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:word_2016:*:*:*:*:*:*:*:*",
"versionEndExcluding": "16.0.5561.1000",
"versionStartIncluding": "16.0.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:microsoft:office_365:*:*:*:*:*:macos:*:*",
"versionEndExcluding": "16.111.26071215",
"versionStartIncluding": "1.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"datePublic": "2026-07-14T14:00:00.000Z",
"descriptions": [
{
"lang": "en-US",
"value": "Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en-US",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416: Use After Free",
"lang": "en-US",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-07-14T19:41:12.352Z",
"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"shortName": "microsoft"
},
"references": [
{
"name": "Microsoft Word Remote Code Execution Vulnerability",
"tags": [
"vendor-advisory",
"patch"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55128"
}
],
"title": "Microsoft Word Remote Code Execution Vulnerability"
}
},
"cveMetadata": {
"assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
"assignerShortName": "microsoft",
"cveId": "CVE-2026-55128",
"datePublished": "2026-07-14T17:09:02.323Z",
"dateReserved": "2026-06-16T15:03:49.681Z",
"dateUpdated": "2026-07-14T19:41:12.352Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2026-55128\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2026-07-14T18:18:19.320\",\"lastModified\":\"2026-07-14T20:35:32.720\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.\"}],\"affected\":[{\"source\":\"secure@microsoft.com\",\"affectedData\":[{\"vendor\":\"Microsoft\",\"product\":\"Microsoft 365 Apps for Enterprise\",\"platforms\":[\"32-bit Systems\",\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.1\",\"lessThan\":\"https://aka.ms/OfficeSecurityReleases\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office 2019\",\"platforms\":[\"32-bit Systems\",\"x64-based Systems\"],\"versions\":[{\"version\":\"19.0.0\",\"lessThan\":\"https://aka.ms/OfficeSecurityReleases\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office 365 for Mac\",\"versions\":[{\"version\":\"1.0.0\",\"lessThan\":\"16.111.26071215\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office LTSC 2021\",\"platforms\":[\"32-bit Systems\",\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.1\",\"lessThan\":\"https://aka.ms/OfficeSecurityReleases\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office LTSC 2024\",\"platforms\":[\"32-bit Systems\",\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.0\",\"lessThan\":\"https://aka.ms/OfficeSecurityReleases\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office LTSC for Mac 2021\",\"versions\":[{\"version\":\"16.0.1\",\"lessThan\":\"16.111.26071215\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Office LTSC for Mac 2024\",\"versions\":[{\"version\":\"16.0.0\",\"lessThan\":\"16.111.26071215\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft SharePoint Enterprise Server 2016\",\"platforms\":[\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.0\",\"lessThan\":\"16.0.5561.1001\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft SharePoint Server 2019\",\"platforms\":[\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.0\",\"lessThan\":\"16.0.10417.20175\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft SharePoint Server Subscription Edition\",\"platforms\":[\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.0\",\"lessThan\":\"16.0.19725.20434\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"Microsoft\",\"product\":\"Microsoft Word 2016\",\"platforms\":[\"32-bit Systems\",\"x64-based Systems\"],\"versions\":[{\"version\":\"16.0.1\",\"lessThan\":\"16.0.5561.1000\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55128\",\"source\":\"secure@microsoft.com\"}]}}"
}
}
FKIE_CVE-2026-55128
Vulnerability from fkie_nvd - Published: 2026-07-14 18:18 - Updated: 2026-07-14 20:35| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft 365 Apps for Enterprise",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "19.0.0",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office 365 for Mac",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "1.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office LTSC 2021",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Office LTSC 2024",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "https://aka.ms/OfficeSecurityReleases",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office LTSC for Mac 2021",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
},
{
"product": "Microsoft Office LTSC for Mac 2024",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.111.26071215",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Enterprise Server 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.5561.1001",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Server 2019",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.10417.20175",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"x64-based Systems"
],
"product": "Microsoft SharePoint Server Subscription Edition",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.19725.20434",
"status": "affected",
"version": "16.0.0",
"versionType": "custom"
}
]
},
{
"platforms": [
"32-bit Systems",
"x64-based Systems"
],
"product": "Microsoft Word 2016",
"vendor": "Microsoft",
"versions": [
{
"lessThan": "16.0.5561.1000",
"status": "affected",
"version": "16.0.1",
"versionType": "custom"
}
]
}
],
"source": "secure@microsoft.com"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally."
}
],
"id": "CVE-2026-55128",
"lastModified": "2026-07-14T20:35:32.720",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "secure@microsoft.com",
"type": "Primary"
}
]
},
"published": "2026-07-14T18:18:19.320",
"references": [
{
"source": "secure@microsoft.com",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55128"
}
],
"sourceIdentifier": "secure@microsoft.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
],
"source": "secure@microsoft.com",
"type": "Primary"
}
]
}
GHSA-6F4X-V88V-3F2G
Vulnerability from github – Published: 2026-07-14 18:32 – Updated: 2026-07-14 18:32Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
{
"affected": [],
"aliases": [
"CVE-2026-55128"
],
"database_specific": {
"cwe_ids": [
"CWE-416"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-07-14T18:18:19Z",
"severity": "HIGH"
},
"details": "Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.",
"id": "GHSA-6f4x-v88v-3f2g",
"modified": "2026-07-14T18:32:35Z",
"published": "2026-07-14T18:32:35Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-55128"
},
{
"type": "WEB",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55128"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
NCSC-2026-0237
Vulnerability from csaf_ncscnl - Published: 2026-07-14 18:40 - Updated: 2026-07-14 18:40An external control of file name or path vulnerability in Microsoft Office SharePoint allows an authorized attacker to perform network spoofing.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A missing authentication vulnerability in Microsoft Office SharePoint allows unauthorized attackers to elevate privileges over a network, posing a critical security risk.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A deserialization vulnerability in Microsoft Office SharePoint allows unauthorized remote code execution by processing untrusted data over a network.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A deserialization vulnerability in Microsoft Office SharePoint allows unauthorized remote code execution by processing untrusted data over a network.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An integer overflow or wraparound vulnerability in Microsoft Office enables unauthorized local attackers to disclose sensitive information.
CWE-190 - Integer Overflow or Wraparound| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Word allows a local unauthorized attacker to disclose sensitive information.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use after free vulnerability in Microsoft Office Word allows unauthorized attackers to execute code locally, posing a significant security risk.
CWE-416 - Use After Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An integer overflow or wraparound vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An input validation flaw in Microsoft Office Word allows unauthorized local attackers to disclose sensitive information.
CWE-1287 - Improper Validation of Specified Type of Input| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by an attacker.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A double free vulnerability in Microsoft Office Word allows unauthorized local code execution by mishandling memory deallocation.
CWE-415 - Double Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A server-side request forgery (SSRF) vulnerability in Microsoft Office SharePoint allows an authorized attacker to disclose information over a network.
CWE-918 - Server-Side Request Forgery (SSRF)| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A weak authentication vulnerability in Microsoft Office SharePoint enables unauthorized attackers to bypass security controls over a network, potentially compromising system integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A numeric truncation error in Microsoft Office Word enables an unauthorized local attacker to disclose sensitive information.
CWE-197 - Numeric Truncation Error| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use after free vulnerability in Microsoft Office Word allows unauthorized attackers to execute code locally, posing a significant security risk.
CWE-416 - Use After Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by an attacker.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A missing authorization vulnerability in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network, potentially compromising system integrity.
CWE-862 - Missing Authorization| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.
CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
Improper access control in Microsoft Office SharePoint enables an authorized attacker to perform network-based spoofing attacks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An improper authorization vulnerability in Microsoft Office SharePoint enables an authorized attacker to elevate privileges over a network, potentially compromising system integrity.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized local attacker to disclose sensitive information.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local attackers to disclose sensitive information.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A type confusion vulnerability in Microsoft Office Excel allows unauthorized local code execution by accessing resources using incompatible types.
CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A type confusion vulnerability in Microsoft Office Excel allows unauthorized local code execution by accessing resources using incompatible types.
CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An integer overflow or wraparound vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An integer underflow vulnerability in Microsoft Office Excel allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local attackers to disclose sensitive information.
CWE-822 - Untrusted Pointer Dereference| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
CWE-822 - Untrusted Pointer Dereference| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A buffer over-read vulnerability in Microsoft Office Excel enables unauthorized local code execution by an attacker exploiting the flaw.
CWE-126 - Buffer Over-read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized attackers to disclose sensitive information over a network.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.
CWE-416 - Use After Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use of uninitialized resource vulnerability in Microsoft Office Excel allows unauthorized local code execution by attackers.
CWE-908 - Use of Uninitialized Resource| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by reading memory beyond intended boundaries.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.
CWE-416 - Use After Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.
CWE-416 - Use After Free| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A type confusion vulnerability in Microsoft Office allows unauthorized local code execution by accessing resources using incompatible types.
CWE-843 - Access of Resource Using Incompatible Type ('Type Confusion')| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An integer overflow or wraparound vulnerability in Microsoft Office enables unauthorized local attackers to disclose sensitive information.
CWE-190 - Integer Overflow or Wraparound| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A use of uninitialized resource vulnerability in Microsoft Office allows unauthorized local attackers to disclose sensitive information.
CWE-908 - Use of Uninitialized Resource| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.
CWE-125 - Out-of-bounds Read| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office OneNote enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A stack-based buffer overflow vulnerability in the Windows Graphics Device Interface (GDI) allows an authorized local attacker to elevate privileges on affected systems.
CWE-121 - Stack-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.
CWE-122 - Heap-based Buffer Overflow| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft 365 Apps for Enterprise for 64-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Excel 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 2019 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office 365 for Mac
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2021 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 32-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC 2024 for 64-bit editions
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2021
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office LTSC for Mac 2024
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Office for Android
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft PowerPoint 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Enterprise Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft SharePoint Server Subscription Edition
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (32-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Word 2016 (64-bit edition)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Office Online Server
|
vers:unknown/* |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Microsoft heeft kwetsbaarheden verholpen in diverse Office producten, zoals Word, Excel, Powerpoint en SharePoint.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om aanvallen uit te voeren die kunnen leiden tot categorie\u00ebn schade, zoals benoemd in onderstaande tabel.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide bestand te openen of link te volgen, met uitzondering van SharePoint. Voor succesvol misbruik van kwetsbaarheden in SharePoint is geen gebruikersinteractie nodig, anders dan het volgen van een malafide link.\n\n```\nMicrosoft Office SharePoint: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-54108 | 6.50 | Voordoen als andere gebruiker | \n| CVE-2026-56164 | 5.30 | Verkrijgen van verhoogde rechten | \n| CVE-2026-50522 | 9.80 | Uitvoeren van willekeurige code | \n| CVE-2026-58644 | 9.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55016 | 4.60 | Voordoen als andere gebruiker | \n| CVE-2026-55019 | 4.60 | Voordoen als andere gebruiker | \n| CVE-2026-55020 | 4.60 | Voordoen als andere gebruiker | \n| CVE-2026-55021 | 7.30 | Voordoen als andere gebruiker | \n| CVE-2026-55030 | 4.60 | Voordoen als andere gebruiker | \n| CVE-2026-55034 | 7.30 | Voordoen als andere gebruiker | \n| CVE-2026-55126 | 7.30 | Voordoen als andere gebruiker | \n| CVE-2026-55051 | 6.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55040 | 9.10 | Omzeilen van beveiligingsmaatregel | \n| CVE-2026-55052 | 8.80 | Verkrijgen van verhoogde rechten | \n| CVE-2026-55135 | 4.60 | Voordoen als andere gebruiker | \n| CVE-2026-56157 | 5.40 | Voordoen als andere gebruiker | \n| CVE-2026-58277 | 8.80 | Verkrijgen van verhoogde rechten | \n|----------------|------|-------------------------------------|\n\nMicrosoft Office Word: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-55050 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55032 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55033 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55124 | 5.50 | Uitvoeren van willekeurige code | \n| CVE-2026-55127 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55055 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55038 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55132 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55134 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55142 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55128 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55130 | 7.80 | Uitvoeren van willekeurige code | \n|----------------|------|-------------------------------------|\n\nMicrosoft Office PowerPoint: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-55043 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55123 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55120 | 7.80 | Uitvoeren van willekeurige code | \n|----------------|------|-------------------------------------|\n\nMicrosoft Office: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-56193 | 7.10 | Toegang tot gevoelige gegevens | \n| CVE-2026-47290 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-50301 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-50314 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-50467 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55017 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55018 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55022 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55023 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55125 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55026 | 6.20 | Toegang tot gevoelige gegevens | \n| CVE-2026-55027 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55028 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55047 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55045 | 8.40 | Uitvoeren van willekeurige code | \n| CVE-2026-55049 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55129 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55035 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55057 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55056 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55140 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55042 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55139 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-50665 | 7.80 | Toegang tot gevoelige gegevens | \n| CVE-2026-56192 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-56195 | 5.50 | Toegang tot gevoelige gegevens | \n|----------------|------|-------------------------------------|\n\nMicrosoft Office OneNote: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-55133 | 7.80 | Uitvoeren van willekeurige code | \n|----------------|------|-------------------------------------|\n\nMicrosoft Office Excel: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-50675 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-50678 | 6.60 | Toegang tot gevoelige gegevens | \n| CVE-2026-54988 | 6.10 | Toegang tot gevoelige gegevens | \n| CVE-2026-55899 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55948 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-58618 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-47642 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-48580 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55024 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-50408 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55046 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55025 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55031 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55048 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55029 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55039 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55041 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55138 | 5.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55136 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55141 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55036 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55044 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55054 | 6.50 | Toegang tot gevoelige gegevens | \n| CVE-2026-55037 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55058 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55137 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55053 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55122 | 7.10 | Toegang tot gevoelige gegevens | \n| CVE-2026-55131 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-54131 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55898 | 6.10 | Toegang tot gevoelige gegevens | \n| CVE-2026-55947 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-55949 | 7.80 | Uitvoeren van willekeurige code | \n| CVE-2026-56156 | 7.80 | Uitvoeren van willekeurige code | \n|----------------|------|-------------------------------------|\n\nWindows GDI: \n|----------------|------|-------------------------------------|\n| CVE-ID | CVSS | Impact |\n|----------------|------|-------------------------------------|\n| CVE-2026-50387 | 7.80 | Verkrijgen van verhoogde rechten | \n|----------------|------|-------------------------------------|\n```\n",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:\n\nhttps://portal.msrc.microsoft.com/en-us/security-guidance",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"title": "Kwetsbaarheden verholpen in Microsoft Office",
"tracking": {
"current_release_date": "2026-07-14T18:40:38.690802Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0237",
"initial_release_date": "2026-07-14T18:40:38.690802Z",
"revision_history": [
{
"date": "2026-07-14T18:40:38.690802Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Microsoft 365 Apps for Enterprise for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Microsoft 365 Apps for Enterprise for 64-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Microsoft Excel 2016 (32-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Microsoft Excel 2016 (64-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Microsoft Office 2016 (32-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Microsoft Office 2016 (64-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Microsoft Office 2019 for 32-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Microsoft Office 2019 for 64-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Microsoft Office 365 for Mac"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC 2021 for 32-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC 2021 for 64-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC 2024 for 32-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC 2024 for 64-bit editions"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC for Mac 2021"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "Microsoft Office LTSC for Mac 2024"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "Microsoft Office for Android"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "Microsoft PowerPoint 2016 (32-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "Microsoft PowerPoint 2016 (64-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "Microsoft SharePoint Enterprise Server 2016"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "Microsoft SharePoint Server 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "Microsoft SharePoint Server Subscription Edition"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "Microsoft Word 2016 (32-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "Microsoft Word 2016 (64-bit edition)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "Office Online Server"
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-54108",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"notes": [
{
"category": "other",
"text": "External Control of File Name or Path",
"title": "CWE-73"
},
{
"category": "description",
"text": "An external control of file name or path vulnerability in Microsoft Office SharePoint allows an authorized attacker to perform network spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-54108 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-54108.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-54108"
},
{
"cve": "CVE-2026-56164",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "description",
"text": "A missing authentication vulnerability in Microsoft Office SharePoint allows unauthorized attackers to elevate privileges over a network, posing a critical security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56164 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56164.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56164"
},
{
"cve": "CVE-2026-50522",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "description",
"text": "A deserialization vulnerability in Microsoft Office SharePoint allows unauthorized remote code execution by processing untrusted data over a network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50522 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50522.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50522"
},
{
"cve": "CVE-2026-58644",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"notes": [
{
"category": "other",
"text": "Deserialization of Untrusted Data",
"title": "CWE-502"
},
{
"category": "description",
"text": "A deserialization vulnerability in Microsoft Office SharePoint allows unauthorized remote code execution by processing untrusted data over a network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-58644 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-58644.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-58644"
},
{
"cve": "CVE-2026-55016",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55016 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55016.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55016"
},
{
"cve": "CVE-2026-55019",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55019 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55019.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55019"
},
{
"cve": "CVE-2026-55020",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55020 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55020.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55020"
},
{
"cve": "CVE-2026-55021",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55021 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55021.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55021"
},
{
"cve": "CVE-2026-55023",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55023 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55023.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55023"
},
{
"cve": "CVE-2026-55030",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55030 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55030.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55030"
},
{
"cve": "CVE-2026-55125",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55125 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55125.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55125"
},
{
"cve": "CVE-2026-55026",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "An integer overflow or wraparound vulnerability in Microsoft Office enables unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55026 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55026.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55026"
},
{
"cve": "CVE-2026-55034",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55034 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55034.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55034"
},
{
"cve": "CVE-2026-55027",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55027 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55027.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55027"
},
{
"cve": "CVE-2026-55028",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55028 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55028.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55028"
},
{
"cve": "CVE-2026-55047",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55047 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55047.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55047"
},
{
"cve": "CVE-2026-55045",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55045 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55045.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55045"
},
{
"cve": "CVE-2026-55050",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Word allows a local unauthorized attacker to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55050 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55050.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55050"
},
{
"cve": "CVE-2026-55032",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use after free vulnerability in Microsoft Office Word allows unauthorized attackers to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55032 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55032.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55032"
},
{
"cve": "CVE-2026-55033",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "An integer overflow or wraparound vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55033 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55033.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55033"
},
{
"cve": "CVE-2026-55124",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Specified Type of Input",
"title": "CWE-1287"
},
{
"category": "description",
"text": "An input validation flaw in Microsoft Office Word allows unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55124 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55124.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55124"
},
{
"cve": "CVE-2026-55127",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by an attacker.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55127 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55127.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55127"
},
{
"cve": "CVE-2026-55035",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55035 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55035.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55035"
},
{
"cve": "CVE-2026-55055",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55055 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55055.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55055"
},
{
"cve": "CVE-2026-55038",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55038 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55038.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55038"
},
{
"cve": "CVE-2026-55132",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "other",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "description",
"text": "A double free vulnerability in Microsoft Office Word allows unauthorized local code execution by mishandling memory deallocation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55132 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55132.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55132"
},
{
"cve": "CVE-2026-55126",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55126 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55126.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55126"
},
{
"cve": "CVE-2026-55051",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "description",
"text": "A server-side request forgery (SSRF) vulnerability in Microsoft Office SharePoint allows an authorized attacker to disclose information over a network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55051 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55051.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55051"
},
{
"cve": "CVE-2026-55134",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55134 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55134.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55134"
},
{
"cve": "CVE-2026-55040",
"cwe": {
"id": "CWE-1390",
"name": "Weak Authentication"
},
"notes": [
{
"category": "other",
"text": "Weak Authentication",
"title": "CWE-1390"
},
{
"category": "description",
"text": "A weak authentication vulnerability in Microsoft Office SharePoint enables unauthorized attackers to bypass security controls over a network, potentially compromising system integrity.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55040 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55040.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55040"
},
{
"cve": "CVE-2026-55142",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "A numeric truncation error in Microsoft Office Word enables an unauthorized local attacker to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55142 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55142.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55142"
},
{
"cve": "CVE-2026-55128",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use after free vulnerability in Microsoft Office Word allows unauthorized attackers to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55128 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55128.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55128"
},
{
"cve": "CVE-2026-55130",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Word enables unauthorized local code execution by an attacker.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55130 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55130.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55130"
},
{
"cve": "CVE-2026-55052",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "other",
"text": "Missing Authorization",
"title": "CWE-862"
},
{
"category": "description",
"text": "A missing authorization vulnerability in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network, potentially compromising system integrity.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55052 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55052.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55052"
},
{
"cve": "CVE-2026-55135",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "description",
"text": "Microsoft Office SharePoint contains a cross-site scripting vulnerability due to improper input neutralization during web page generation, enabling authorized attackers to perform network-based spoofing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55135 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55135.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55135"
},
{
"cve": "CVE-2026-56157",
"notes": [
{
"category": "description",
"text": "Improper access control in Microsoft Office SharePoint enables an authorized attacker to perform network-based spoofing attacks.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56157 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56157.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56157"
},
{
"cve": "CVE-2026-56192",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56192 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56192.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56192"
},
{
"cve": "CVE-2026-58277",
"notes": [
{
"category": "description",
"text": "An improper authorization vulnerability in Microsoft Office SharePoint enables an authorized attacker to elevate privileges over a network, potentially compromising system integrity.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-58277 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-58277.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-58277"
},
{
"cve": "CVE-2026-50675",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50675 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50675.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50675"
},
{
"cve": "CVE-2026-50678",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized local attacker to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50678 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50678.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50678"
},
{
"cve": "CVE-2026-54988",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-54988 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-54988.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-54988"
},
{
"cve": "CVE-2026-55899",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55899 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55899.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55899"
},
{
"cve": "CVE-2026-55948",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55948 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55948.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55948"
},
{
"cve": "CVE-2026-58618",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-58618 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-58618.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-58618"
},
{
"cve": "CVE-2026-47642",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-47642 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-47642.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-47642"
},
{
"cve": "CVE-2026-48580",
"cwe": {
"id": "CWE-822",
"name": "Untrusted Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "Untrusted Pointer Dereference",
"title": "CWE-822"
},
{
"category": "description",
"text": "An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-48580 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-48580.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-48580"
},
{
"cve": "CVE-2026-55024",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "other",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "description",
"text": "A type confusion vulnerability in Microsoft Office Excel allows unauthorized local code execution by accessing resources using incompatible types.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55024 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55024.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55024"
},
{
"cve": "CVE-2026-50408",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50408 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50408.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50408"
},
{
"cve": "CVE-2026-55046",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55046 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55046.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55046"
},
{
"cve": "CVE-2026-55025",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "other",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "description",
"text": "A type confusion vulnerability in Microsoft Office Excel allows unauthorized local code execution by accessing resources using incompatible types.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55025 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55025.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55025"
},
{
"cve": "CVE-2026-55031",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55031 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55031.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55031"
},
{
"cve": "CVE-2026-55048",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "An integer overflow or wraparound vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55048 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55048.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55048"
},
{
"cve": "CVE-2026-55029",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55029 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55029.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55029"
},
{
"cve": "CVE-2026-55039",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Underflow (Wrap or Wraparound)",
"title": "CWE-191"
},
{
"category": "description",
"text": "An integer underflow vulnerability in Microsoft Office Excel allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55039 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55039.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55039"
},
{
"cve": "CVE-2026-55041",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55041 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55041.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55041"
},
{
"cve": "CVE-2026-55138",
"cwe": {
"id": "CWE-822",
"name": "Untrusted Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "Untrusted Pointer Dereference",
"title": "CWE-822"
},
{
"category": "description",
"text": "An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55138 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55138.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55138"
},
{
"cve": "CVE-2026-55136",
"cwe": {
"id": "CWE-822",
"name": "Untrusted Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "Untrusted Pointer Dereference",
"title": "CWE-822"
},
{
"category": "description",
"text": "An untrusted pointer dereference vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55136 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55136.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55136"
},
{
"cve": "CVE-2026-55141",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55141 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55141.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55141"
},
{
"cve": "CVE-2026-55036",
"cwe": {
"id": "CWE-126",
"name": "Buffer Over-read"
},
"notes": [
{
"category": "other",
"text": "Buffer Over-read",
"title": "CWE-126"
},
{
"category": "description",
"text": "A buffer over-read vulnerability in Microsoft Office Excel enables unauthorized local code execution by an attacker exploiting the flaw.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55036 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55036.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55036"
},
{
"cve": "CVE-2026-55044",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55044 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55044.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55044"
},
{
"cve": "CVE-2026-55054",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized attackers to disclose sensitive information over a network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55054 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55054.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55054"
},
{
"cve": "CVE-2026-55037",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55037 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55037.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55037"
},
{
"cve": "CVE-2026-55058",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55058 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55058.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55058"
},
{
"cve": "CVE-2026-55137",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55137 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55137.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55137"
},
{
"cve": "CVE-2026-55053",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55053 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55053.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55053"
},
{
"cve": "CVE-2026-55122",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55122 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55122.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55122"
},
{
"cve": "CVE-2026-55131",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55131 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55131.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55131"
},
{
"cve": "CVE-2026-54131",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office Excel enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-54131 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-54131.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-54131"
},
{
"cve": "CVE-2026-55898",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office Excel allows unauthorized local information disclosure, potentially exposing sensitive data to local attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55898 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55898.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55898"
},
{
"cve": "CVE-2026-55947",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55947 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55947.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55947"
},
{
"cve": "CVE-2026-55949",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "other",
"text": "Use of Uninitialized Resource",
"title": "CWE-908"
},
{
"category": "description",
"text": "A use of uninitialized resource vulnerability in Microsoft Office Excel allows unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55949 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55949.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55949"
},
{
"cve": "CVE-2026-56193",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by reading memory beyond intended boundaries.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56193 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56193.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56193"
},
{
"cve": "CVE-2026-47290",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-47290 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-47290.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-47290"
},
{
"cve": "CVE-2026-50301",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50301 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50301.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50301"
},
{
"cve": "CVE-2026-50314",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50314 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50314.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50314"
},
{
"cve": "CVE-2026-50467",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50467 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50467.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50467"
},
{
"cve": "CVE-2026-55017",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55017 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55017.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55017"
},
{
"cve": "CVE-2026-55018",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "A use-after-free vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk to affected systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55018 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55018.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55018"
},
{
"cve": "CVE-2026-55022",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "other",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "description",
"text": "A type confusion vulnerability in Microsoft Office allows unauthorized local code execution by accessing resources using incompatible types.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55022 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55022.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55022"
},
{
"cve": "CVE-2026-55129",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55129 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55129.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55129"
},
{
"cve": "CVE-2026-55057",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "An integer overflow or wraparound vulnerability in Microsoft Office enables unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55057 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55057.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55057"
},
{
"cve": "CVE-2026-55056",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55056 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55056.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55056"
},
{
"cve": "CVE-2026-55140",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55140 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55140.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55140"
},
{
"cve": "CVE-2026-55042",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "other",
"text": "Use of Uninitialized Resource",
"title": "CWE-908"
},
{
"category": "description",
"text": "A use of uninitialized resource vulnerability in Microsoft Office allows unauthorized local attackers to disclose sensitive information.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55042 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55042.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55042"
},
{
"cve": "CVE-2026-55139",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55139 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55139.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55139"
},
{
"cve": "CVE-2026-55043",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55043 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55043.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55043"
},
{
"cve": "CVE-2026-55123",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Incorrect Conversion between Numeric Types",
"title": "CWE-681"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55123 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55123.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55123"
},
{
"cve": "CVE-2026-55120",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office PowerPoint enables unauthorized local code execution by attackers.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55120 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55120.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55120"
},
{
"cve": "CVE-2026-50665",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50665 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50665.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50665"
},
{
"cve": "CVE-2026-56195",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "An out-of-bounds read vulnerability in Microsoft Office allows an unauthorized local attacker to disclose sensitive information by exploiting improper memory access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56195 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56195.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56195"
},
{
"cve": "CVE-2026-55133",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office OneNote enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55133"
},
{
"cve": "CVE-2026-56156",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office Excel enables an unauthorized attacker to execute code locally, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-56156 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-56156.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-56156"
},
{
"cve": "CVE-2026-50387",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "A stack-based buffer overflow vulnerability in the Windows Graphics Device Interface (GDI) allows an authorized local attacker to elevate privileges on affected systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-50387 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-50387.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-50387"
},
{
"cve": "CVE-2026-55049",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "A heap-based buffer overflow vulnerability in Microsoft Office allows unauthorized local code execution, posing a significant security risk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-55049 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-55049.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24"
]
}
],
"title": "CVE-2026-55049"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.