Windows : Microsoft Bulletins : Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2023)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.832286

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2023)

Resumen: This host is missing a critical security; update according to Microsoft Office Click-to-Run update September 2023

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Office Click-to-Run update September 2023

Vulnerability Insight:
Multiple flaws exist due to,

- Multiple remote code execution Vulnerabilities.

- Microsoft Spoofing Vulnerabilities.

- Microsoft information disclosure vulnerabilities.

Vulnerability Impact:
Successful exploitation would allow an attacker to
disclose sensitive information, conduct remote code execution and spoofing on an
affected system.

Affected Software/OS:
Microsoft Office 365 (2016 Click-to-Run).

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2023-36766
Microsoft Excel Information Disclosure Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36766
Common Vulnerability Exposure (CVE) ID: CVE-2023-36763
Microsoft Outlook Information Disclosure Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36763
Common Vulnerability Exposure (CVE) ID: CVE-2023-36762
Microsoft Word Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36762
Common Vulnerability Exposure (CVE) ID: CVE-2023-36761
Microsoft Word Information Disclosure Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761
Common Vulnerability Exposure (CVE) ID: CVE-2023-36765
Microsoft Office Elevation of Privilege Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36765
Common Vulnerability Exposure (CVE) ID: CVE-2023-36767
Microsoft Office Security Feature Bypass Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36767
Common Vulnerability Exposure (CVE) ID: CVE-2023-27911
https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0004
Common Vulnerability Exposure (CVE) ID: CVE-2023-41764
Microsoft Office Spoofing Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-41764

Copyright Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.832286
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Sep 2023)
Resumen:	This host is missing a critical security; update according to Microsoft Office Click-to-Run update September 2023
Descripción:	Summary: This host is missing a critical security update according to Microsoft Office Click-to-Run update September 2023 Vulnerability Insight: Multiple flaws exist due to, - Multiple remote code execution Vulnerabilities. - Microsoft Spoofing Vulnerabilities. - Microsoft information disclosure vulnerabilities. Vulnerability Impact: Successful exploitation would allow an attacker to disclose sensitive information, conduct remote code execution and spoofing on an affected system. Affected Software/OS: Microsoft Office 365 (2016 Click-to-Run). Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-36766 Microsoft Excel Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36766 Common Vulnerability Exposure (CVE) ID: CVE-2023-36763 Microsoft Outlook Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36763 Common Vulnerability Exposure (CVE) ID: CVE-2023-36762 Microsoft Word Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36762 Common Vulnerability Exposure (CVE) ID: CVE-2023-36761 Microsoft Word Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761 Common Vulnerability Exposure (CVE) ID: CVE-2023-36765 Microsoft Office Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36765 Common Vulnerability Exposure (CVE) ID: CVE-2023-36767 Microsoft Office Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36767 Common Vulnerability Exposure (CVE) ID: CVE-2023-27911 https://www.autodesk.com/trust/security-advisories/adsk-sa-2023-0004 Common Vulnerability Exposure (CVE) ID: CVE-2023-41764 Microsoft Office Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-41764
Copyright	Copyright (C) 2023 Greenbone AG