Known Vulnerabilities for Office by Microsoft

Listed below are 10 of the newest known vulnerabilities associated with "Office" by "Microsoft".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2022-44747 Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Cyber Protect Hom... Not Provided 2022-11-07 2022-11-07
CVE-2022-44746 Sensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Cyber Prote... Not Provided 2022-11-07 2022-11-07
CVE-2022-44745 Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect Home Office (Windows... Not Provided 2022-11-07 2022-11-07
CVE-2022-44744 Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis Cyber Protect Hom... Not Provided 2022-11-07 2022-11-07
CVE-2022-44733 Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Hom... Not Provided 2022-11-07 2022-11-07
CVE-2022-44732 Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Cyber Protect Hom... Not Provided 2022-11-07 2022-11-07
CVE-2022-41107 Microsoft Office Graphics Remote Code Execution Vulnerability. Not Provided 2022-11-09 2022-11-09
CVE-2022-41043 Microsoft Office Information Disclosure Vulnerability. Not Provided 2022-10-11 2022-10-11
CVE-2022-39027 U-Office Force Forum function has insufficient filtering for special characters. A remote attacker with general user privileg... 5.4 - MEDIUM 2022-10-31 2022-10-31
CVE-2022-39026 U-Office Force UserDefault page has insufficient filtering for special characters in the HTTP header fields. A remote attacke... 5.4 - MEDIUM 2022-10-31 2022-10-31

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationMicrosoftOfficexpsp3AllAll
ApplicationMicrosoftOfficexpsp2AllAll
ApplicationMicrosoftOfficexpsp1AllAll
ApplicationMicrosoftOfficexpAllAllAll
ApplicationMicrosoftOffice98AllAllAll
ApplicationMicrosoftOffice97AllAllAll
ApplicationMicrosoftOffice97AllAllja
ApplicationMicrosoftOffice97AllAllko
ApplicationMicrosoftOffice97AllAllzh
ApplicationMicrosoftOffice95AllAllAll
ApplicationMicrosoftOffice4.3AllAllAll
ApplicationMicrosoftOffice4.0AllAllAll
ApplicationMicrosoftOffice3.0AllAllAll
ApplicationMicrosoftOffice2019Allmac_osAll
ApplicationMicrosoftOffice2019AllAllAll
ApplicationMicrosoftOffice2019AllAllAll
ApplicationMicrosoftOffice2019AllAllAll
ApplicationMicrosoftOffice2019AllAllAll
ApplicationMicrosoftOffice2019AllAllAll
ApplicationMicrosoftOffice2019AllAllAll

Popular searches for Office

Microsoft Office

Microsoft Office, or simply Office, is a family of client software, server software, and services developed by Microsoft. It was first announced by Bill Gates on August 1, 1988, at COMDEX in Las Vegas. Initially a marketing term for an office suite, the first version of Office contained Microsoft Word, Microsoft Excel, and Microsoft PowerPoint.

© CVE.report 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report