Test ID:	1.3.6.1.4.1.25623.1.0.826957
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Apr 2023)
Summary:	This host is missing a critical security; update according to Microsoft Office Click-to-Run update April 2023
Description:	Summary: This host is missing a critical security update according to Microsoft Office Click-to-Run update April 2023 Vulnerability Insight: Multiple flaws exist due to multiple vulnerabilities in Microsoft Publisher, Microsoft Word and Microsoft Office. Vulnerability Impact: Successful exploitation will allow attackers to conduct remote code execution on an affected system. Affected Software/OS: Microsoft Office 365 (2016 Click-to-Run). Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-28295 Microsoft Publisher Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28295 Common Vulnerability Exposure (CVE) ID: CVE-2023-28287 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28287 Common Vulnerability Exposure (CVE) ID: CVE-2023-28311 Microsoft Word Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28311 Common Vulnerability Exposure (CVE) ID: CVE-2023-28285 Microsoft Office Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28285 http://packetstormsecurity.com/files/173127/Microsoft-Office-Remote-Code-Execution.html http://packetstormsecurity.com/files/173140/Microsoft-365-MSO-2305-Build-16.0.16501.20074-Remote-Code-Execution.html
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.