Microsoft Office 2013 Click-To-Run vulnerabilities
6 known vulnerabilities affecting microsoft/microsoft_office_2013_click-to-run.
Total CVEs
6
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH6
Vulnerabilities
Page 1 of 1
CVE-2023-33148HIGHCVSS 7.8PoC≥ 15.0.0.0, < 15.0.5571.10002023-07-11
CVE-2023-33148 [HIGH] CWE-59 CVE-2023-33148: Microsoft Office Elevation of Privilege Vulnerability
Microsoft Office Elevation of Privilege Vulnerability
cvelistv5nvd
CVE-2022-22004HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5415.xxxxxx2022-02-09
CVE-2022-22004 [HIGH] CVE-2022-22004: Microsoft Office ClickToRun Remote Code Execution Vulnerability
Microsoft Office ClickToRun Remote Code Execution Vulnerability
cvelistv5nvd
CVE-2020-16955HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5571.10002020-10-16
CVE-2020-16955 [HIGH] CVE-2020-16955: <p>An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.
To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.
The security update addresses the vulnerab
cvelistv5nvd
CVE-2020-16934HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5571.10002020-10-16
CVE-2020-16934 [HIGH] CVE-2020-16934: <p>An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.
To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.
The security update addresses the vulnerab
cvelistv5nvd
CVE-2020-16928HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5571.10002020-10-16
CVE-2020-16928 [HIGH] CVE-2020-16928: <p>An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.
To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.
The security update addresses the vulnerab
cvelistv5nvd
CVE-2020-1581HIGHCVSS 7.8≥ 15.0.0.0, < 15.0.5571.10002020-08-17
CVE-2020-1581 [HIGH] CVE-2020-1581: An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) c
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to execute code on the system.
An attacker could exploit this vulnerability by running a spe
cvelistv5nvd