Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft office x vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2011-0611
Adobe Flash Player prior to 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and previous versions on Android; Adobe AIR prior to 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x prior to 9.4.4 and 10.x up to and including 10.0.1 on Win...
Adobe Flash Player
Adobe Acrobat Reader
Adobe Adobe Air
Adobe Acrobat
Google Chrome
Suse Linux Enterprise Desktop 11
Opensuse Opensuse 11.4
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise Desktop 10
2 EDB exploits
3 Github repositories
4 Articles
8.1
CVSSv3
CVE-2020-0601
A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file wa...
Microsoft Windows 10 1607
Microsoft Windows Server 2016 -
Microsoft Windows 10 -
Microsoft Windows 10 1709
Microsoft Windows 10 1803
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1903
Microsoft Windows 10 1903
Microsoft Windows 10 1909
Microsoft Windows Server 2016 1909
Golang Go
71 Github repositories
5 Articles
6.1
CVSSv3
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
98 Github repositories
NA
CVE_2022_21882
OSEP-Notes Initial Access HTA Fileless Initial Access Reverse Shell (AppLocker + CLM + Defender Bypass) Scenario: You can make a user execute your malicious HTA files, but AppLocker, CLM, and Defender block all payloads. To get a fileless reverse shell, one method that worked for...
1 Github repository
NA
CVE-2006-1318
Microsoft Office 2003 SP1 and SP2, Office XP SP3, Office 2000 SP3, Office 2004 for Mac, and Office X for Mac do not properly parse record lengths, which allows remote malicious users to execute arbitrary code via a malformed control in an Office document, aka "Microsoft Offi...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Office 2004
Microsoft Office X
NA
CVE-2014-1260
QuickLook in Apple OS X up to and including 10.8.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.
Apple Mac Os X 10.8.2
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.1
NA
CVE-2011-0208
QuickLook in Apple Mac OS X 10.6 prior to 10.6.8 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.6
Apple Mac Os X 10.6.7
Apple Mac Os X 10.6.5
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.6
Apple Mac Os X Server 10.6.7
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.5
NA
CVE-2011-0627
Adobe Flash Player prior to 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and prior to 10.3.185.21 on Android allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content, as possibly exploited in the wi...
Adobe Flash Player 10.1.52.14.1
Adobe Flash Player 10.1.102.64
Adobe Flash Player 10.0.45.2
Adobe Flash Player 9.0.112.0
Adobe Flash Player 10.0.12.36
Adobe Flash Player 10.0.32.18
Adobe Flash Player 9.0.151.0
Adobe Flash Player 9.0.18d60
Adobe Flash Player 9.125.0
Adobe Flash Player 9.0.262.0
Adobe Flash Player 9.0.159.0
Adobe Flash Player 9.0.31
Adobe Flash Player 9.0
Adobe Flash Player 8.0.39.0
Adobe Flash Player 8.0.35.0
Adobe Flash Player 7.1
Adobe Flash Player 7.0.68.0
Adobe Flash Player 7.0
Adobe Flash Player 7.0.1
Adobe Flash Player 6.0.21.0
Adobe Flash Player 8.0.34.0
Adobe Flash Player 10.1.95.2
NA
CVE-2011-1417
Integer overflow in QuickLook, as used in Apple Mac OS X prior to 10.6.7 and MobileSafari in Apple iOS prior to 4.2.7 and 4.3.x prior to 4.3.2, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a Mic...
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.5
Apple Mac Os X
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.5
Apple Mac Os X Server
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.2
Apple Iphone Os 4.0.1
Apple Iphone Os 4.0
Apple Iphone Os 3.2.2
Apple Iphone Os 3.2.1
Apple Iphone Os 1.1.3
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.0
NA
CVE-2010-4643
Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file in an ODF or Microsoft Office documen...
Apache Openoffice
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »