CVE Catalog

An integer underflow vulnerability has been identified in Microsoft Office Excel, allowing an unauthorized attacker to execute code locally. This issue affects multiple versions of Excel, including Excel 2016 (both 32-bit and 64-bit editions), Office LTSC for Mac 2021 and 2024, Office 2019 (32-bit and 64-bit editions), and Microsoft 365 Apps for Enterprise (also in 32-bit and 64-bit versions). The vulnerability arises from an integer underflow, or wraparound, which can be exploited to execute arbitrary code.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A cross-site scripting vulnerability has been identified in Microsoft Office SharePoint, allowing an authorized attacker to perform spoofing over the network. This issue arises from improper input neutralization during web page generation.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office Word. This vulnerability allows an unauthorized attacker to locally disclose information by exploiting the buffer overflow. The issue arises when Word processes a malicious file, potentially leading to the unauthorized reading of heap memory.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server products, including SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office 2021, Office LTSC 2021, Office LTSC 2024, and various Microsoft 365 applications. The vulnerability can be exploited through the Preview Pane.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office LTSC 2021, Office LTSC 2024, and Microsoft 365 Apps for Enterprise, both for Windows and Mac. The vulnerability can be exploited through the Preview Pane.

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office. This issue could enable an unauthorized attacker to locally disclose information by reading small portions of heap memory. The vulnerability arises from a buffer over-read, which creates the potential for information leakage.

A protection mechanism failure in Microsoft Office Excel allows unauthorized attackers to locally bypass security features. This vulnerability affects multiple Excel versions, including Microsoft Office 365 for Mac, Office LTSC for Mac 2021, Office LTSC for Mac 2024, and various Microsoft 365 Apps for Enterprise editions, both 32-bit and 64-bit. The vulnerability arises from a failure in the application's protection mechanisms, enabling attackers to circumvent the Office Protected View and open files directly in editing mode.

A type confusion vulnerability has been identified in Microsoft Office, allowing an unauthorized attacker to execute code locally. This issue arises from the access of a resource using an incompatible type. The vulnerability is present in several Microsoft Office products, including Outlook and Word, and affects multiple versions.

A remote code execution vulnerability has been identified in Microsoft Office Word. This issue arises from an untrusted pointer dereference, allowing an unauthorized attacker to execute code locally. The vulnerability affects multiple versions of Microsoft Office, including the LTSC for Mac 2021 and 2024, as well as the 365 Apps for Enterprise for both 32-bit and 64-bit systems.

A type confusion vulnerability has been identified in Microsoft Office applications, including Outlook and Word. This vulnerability allows an unauthorized attacker to execute code locally. It arises from the improper handling of resources, enabling the execution of malicious code.

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office Excel. This issue could enable an unauthorized attacker to disclose information over a network by exploiting the vulnerability. The flaw arises from improper handling of memory, which could allow sensitive data to be read by an attacker.

A path traversal vulnerability has been identified in Microsoft Office SharePoint, allowing an authorized attacker to execute code remotely. This issue arises from improper restrictions on file paths, enabling exploitation over the network.

A cross-site scripting vulnerability has been identified in Microsoft SharePoint Server products, including SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. This vulnerability allows an authorized attacker to perform spoofing over the network by improperly neutralizing input during web page generation.

A use-after-free vulnerability has been identified in OpenSSL's PKCS#7 signature verification process. This issue arises when processing a specially crafted PKCS#7 or S/MIME signed message that includes an empty ASN.1 SET in the SignedData digestAlgorithms field. The flaw causes OpenSSL to incorrectly free a caller-owned BIO, leading to a use-after-free condition when the application later attempts to use the BIO. This vulnerability can result in process crashes, heap corruption, or potentially allow for remote code execution, depending on the application's BIO usage patterns and the behavior of the memory allocator.

A vulnerability exists in OpenSSL's implementation of AES-SIV (RFC 5297) and AES-GCM-SIV (RFC 8452) modes, where the authentication of Additional Authenticated Data (AAD) is mishandled when the ciphertext is empty. This flaw allows an attacker to forge messages with arbitrary AAD to the victim's application using these ciphers. The issue arises because, in the provider implementation, the authentication tag is only computed when decryption is performed with non-empty ciphertext. If AAD is supplied and `EVP_DecryptFinal_ex()` is called without first updating the ciphertext, the tag remains at its default value, all zeros. As a result, an attacker can exploit this by sending empty ciphertext, arbitrary AAD, and an all-zeros tag, which is accepted as valid authentication under any unknown key, in a single operation. This vulnerability affects OpenSSL versions 4.0, 3.6, 3.5, 3.4, and 3.0 (only in AES-SIV mode)

A vulnerability exists in OpenSSL's AES-OCB implementation when the EVP_Cipher() one-shot interface is used. The issue arises because the application-supplied initialization vector (IV) is silently ignored, leading to the reuse of nonces in encryption. This nonce reuse can result in a loss of confidentiality, as it allows for the forgery of ciphertext. The vulnerability affects OpenSSL versions 4.0, 3.6, 3.5, 3.4, and 3.0, but not the FIPS modules in these versions, as the issue is outside the OpenSSL FIPS module boundary.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office LTSC 2021, Office LTSC 2024, and various SharePoint Server editions. The vulnerability requires user interaction, as an attacker must send a malicious Office file and convince the user to open it.

An integer underflow vulnerability has been identified in Microsoft Office Excel. This flaw allows an unauthorized attacker to execute code locally. The vulnerability arises from a numeric truncation error, enabling the execution of arbitrary code.

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office Excel. This issue could enable an unauthorized attacker to disclose information over a network by reading small portions of heap memory.

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office. This issue could enable an unauthorized attacker to locally disclose information by reading small portions of heap memory. The vulnerability affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office LTSC 2021, Office LTSC 2024, and various SharePoint Server products.

An integer underflow vulnerability has been identified in Microsoft Office Excel. This flaw allows an unauthorized attacker to execute code locally. The vulnerability arises from an integer underflow, where values wrap around, potentially leading to unexpected behavior or exploitation.

A heap-based buffer overflow vulnerability has been identified in Microsoft Office. This vulnerability allows an unauthorized attacker to execute code locally. It affects multiple versions of Microsoft Office, including Microsoft 365 Apps for Enterprise, Microsoft Office 2019, Microsoft Office LTSC 2021, and various SharePoint Server editions. The vulnerability requires user interaction, as an attacker must send a malicious Office file and convince the user to open it.

An integer underflow vulnerability has been identified in Microsoft Office Excel. This flaw allows an unauthorized attacker to execute code locally. The vulnerability arises from improper handling of integer values, which can be exploited under certain conditions.

An integer underflow vulnerability has been identified in Microsoft Office Excel. This flaw allows an unauthorized attacker to execute code locally. The vulnerability arises from improper handling of integer values, which can be exploited by manipulating specific data within the application.

A stack-based buffer overflow vulnerability has been identified in the Windows DHCP Client. This vulnerability allows an unauthorized attacker to execute code remotely over the network. It affects multiple Windows versions, including various releases of Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and other server versions. The vulnerability arises when the DHCP client processes crafted data from a malicious DHCP server, particularly when the DhcpGetOriginalSubnetMask API is called.

A vulnerability allowing out-of-bounds read has been identified in the Windows DWM Core Library. This issue enables an authorized attacker to locally disclose information by reading portions of heap memory.

A use-after-free vulnerability has been identified in the Windows DWM Core Library. This vulnerability allows an authorized attacker to locally elevate privileges. The issue arises from improper memory management, which can be exploited to gain higher-level permissions.

A critical vulnerability allowing remote code execution has been identified in the Windows Win32K graphics component. This issue arises from an integer overflow or wraparound, which can be exploited by an unauthorized attacker to execute code locally. The vulnerability affects several versions of Windows, including various releases of Windows 10, Windows 11, Windows Server 2012, and other server versions.

A use-after-free vulnerability in the Windows DWM Core Library has been identified, allowing an authorized attacker to locally elevate privileges. This vulnerability could enable an attacker to gain SYSTEM privileges.

A vulnerability has been identified in Windows Cryptographic Services that allows an unauthorized attacker to elevate privileges locally. This issue arises from improper authentication, enabling attackers to gain SYSTEM privileges on affected systems.

A use-after-free vulnerability has been identified in the Windows Common Log File System Driver. This vulnerability allows an authorized attacker to locally elevate privileges. Exploitation of this vulnerability could enable the attacker to gain SYSTEM privileges.

A use-after-free vulnerability in the Windows DWM Core Library has been identified, allowing an authorized attacker to locally elevate privileges. This vulnerability could enable an attacker to gain SYSTEM privileges.

A use-after-free vulnerability has been identified in the Windows DWM Core Library, allowing an authorized attacker to locally elevate privileges. This vulnerability could enable an attacker to gain SYSTEM privileges.

A use-after-free vulnerability has been identified in the Windows Network Controller (NC) Host Agent. This vulnerability allows an authorized attacker to cause a local denial-of-service condition.

A use-after-free vulnerability has been identified in the Windows DWM Core Library. This vulnerability allows an authorized attacker to locally elevate privileges. Exploitation of this vulnerability could grant SYSTEM privileges to the attacker.

An integer overflow vulnerability has been identified in the Windows Win32K - GRFX component, allowing an unauthorized attacker to execute code locally. This vulnerability requires the user to interact with a specially crafted file using the Windows File Explorer Preview Pane.

A use-after-free vulnerability has been identified in the Windows DWM Core Library, allowing an authorized attacker to locally elevate privileges. This vulnerability affects multiple versions of Windows 10, Windows 11, Windows Server 2019, Windows Server 2022, and Windows Server 2025.

A heap-based buffer overflow vulnerability has been identified in the Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. It affects multiple versions of the Remote Desktop Client for Windows Desktop, as well as various Windows operating systems including Windows 10, Windows 11, and several versions of Windows Server. The vulnerability arises from a buffer overflow in the handling of Remote Desktop connections, which could be exploited by an attacker controlling a Remote Desktop Server when a victim connects using the vulnerable client.

A heap-based buffer overflow vulnerability has been identified in the Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code over a network. It is present in multiple Windows 10 and Windows 11 versions, as well as in Windows Server 2012, 2016, 2019, 2022, and 2025. The vulnerability arises when a victim connects to an attacking server using the vulnerable Remote Desktop Client, potentially leading to remote code execution on the victim's machine.

A heap-based buffer overflow vulnerability has been identified in Microsoft Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. It affects several versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025. The vulnerability arises from a heap-based buffer overflow, which can be exploited when a victim connects to an attacking server using the vulnerable Remote Desktop Client.

A heap-based buffer overflow vulnerability has been identified in Microsoft Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. The issue arises when a victim connects to a compromised Remote Desktop Server using the vulnerable client.

A race condition vulnerability has been identified in Windows Push Notifications, allowing an authorized attacker to locally elevate privileges. This issue arises from concurrent execution using shared resources without proper synchronization.

A vulnerability in Winlogon has been identified, allowing an authorized attacker to locally elevate privileges. This issue arises from improper link resolution before file access, a flaw known as 'link following'.

A use-after-free vulnerability has been identified in Windows Deployment Services (WDS) that allows an unauthorized attacker to execute code remotely over the network. This vulnerability affects multiple versions of Windows Server, including 2012, 2012 R2, 2016, 2019, 2022, and 2025, as well as Windows Server 2025 and 2022 Server Core installations.

A use-after-free vulnerability has been identified in the Microsoft Graphics Component, allowing an authorized attacker to locally elevate privileges. This vulnerability could enable an attacker to gain SYSTEM privileges.

A heap-based buffer overflow vulnerability has been identified in the Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. The issue arises when a victim connects to a compromised Remote Desktop Server using the vulnerable client.