Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft office vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_21882
OSEP-Notes Initial Access HTA Fileless Initial Access Reverse Shell (AppLocker + CLM + Defender Bypass) Scenario: You can make a user execute your malicious HTA files, but AppLocker, CLM, and Defender block all payloads. To get a fileless reverse shell, one method that worked for...
1 Github repository
7.8
CVSSv3
CVE-2024-26199
Microsoft Office Elevation of Privilege Vulnerability
1 Article
9.8
CVSSv3
CVE-2024-21413
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2016
Microsoft Office Long Term Servicing Channel 2021
13 Github repositories
7.8
CVSSv3
CVE-2024-20673
Microsoft Office Remote Code Execution Vulnerability
Microsoft Publisher 2016
Microsoft Word 2016
Microsoft Powerpoint 2016
Microsoft Visio 2016
Microsoft Excel 2016
Microsoft Skype For Business 2016
Microsoft Office 2016
Microsoft Office 2021
Microsoft Office 2019
8.8
CVSSv3
CVE-2024-21378
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook 2016
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office Long Term Servicing Channel 2021
1 Github repository
7.8
CVSSv3
CVE-2024-21379
Microsoft Word Remote Code Execution Vulnerability
Microsoft Word 2016
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office Long Term Servicing Channel 2021
7.8
CVSSv3
CVE-2024-21384
Microsoft Office OneNote Remote Code Execution Vulnerability
Microsoft 365 Apps -
Microsoft Office Long Term Servicing Channel 2021
7.8
CVSSv3
CVE-2024-20677
A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no ...
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office Long Term Servicing Channel 2021
5.5
CVSSv3
CVE-2023-36009
Microsoft Word Information Disclosure Vulnerability
Microsoft Office 2016
Microsoft 365 Apps -
Microsoft Office 2019
Microsoft Office 2021
5.3
CVSSv3
CVE-2023-35619
Microsoft Outlook for Mac Spoofing Vulnerability
Microsoft Office Long Term Servicing Channel 2021
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »