Quan Jin

**Name of the Vulnerable Software and Affected Versions** Microsoft 365 Apps for Enterprise versions 16.0.1 through 16.0.1 **Description** A use-after-free issue in Microsoft Office Excel allows an unauthorized attacker to execute arbitrary code locally by tricking a user into opening a malicious Excel file. **Recommendations** Update Microsoft 365 Apps for Enterprise to a version newer than 16.0.1.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Excel (affected versions not specified) **Description** A heap-based buffer overflow exists in Microsoft Office Excel. This issue allows an unauthorized attacker to execute code locally. Exploitation may allow an attacker to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Excel (affected versions not specified) **Description** A heap-based buffer overflow exists in Microsoft Office Excel that could allow an unauthorized attacker to gain elevated privileges on a local system. This issue allows attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified) Description: A buffer over-read in Microsoft Office Excel can allow an unauthorized attacker to disclose information locally. This issue enables attackers to obtain sensitive information and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified) Description: A use-after-free issue exists in Microsoft Office Excel. This allows an unauthorized attacker to execute code locally. The vulnerability enables remote attackers to execute arbitrary code and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified) Description: An out-of-bounds read issue exists in Microsoft Office Excel. This allows a remote attacker to execute arbitrary code, potentially affecting the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Word (affected versions not specified) Description: An untrusted pointer dereference exists in Microsoft Office Word, potentially allowing an unauthorized attacker to disclose information locally. The vulnerability enables attackers to obtain sensitive information and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified) Description: A use-after-free issue exists in Microsoft Office Excel. This allows an unauthorized attacker to execute code locally. The vulnerability enables remote attackers to execute arbitrary code and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified) Description: The issue is a buffer over-read in Microsoft Office Excel, allowing an unauthorized attacker to execute code locally. It also enables remote attackers to execute arbitrary code and affect the system. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary code and affect the system. This is a remote code execution issue in Internet Explorer. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office (affected versions not specified) Microsoft 365 Apps (affected versions not specified) Microsoft SharePoint Server (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) **Description** The issue is related to a buffer overflow in memory, allowing an attacker to execute arbitrary code. This can be exploited by remote attackers, potentially affecting the system. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For Microsoft Office, update to a version that includes a fix for the buffer overflow issue. For Microsoft 365 Apps, apply configuration changes to restrict the execution of arbitrary code. For Microsoft SharePoint Server, restrict access to vulnerable modules to minimize the risk of exploitation. For Microsoft SharePoint Enterprise Server, consider disabling vulnerable functions until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office (affected versions not specified) **Description** The issue is related to the use of memory after it has been freed, which can allow an attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Excel (affected versions not specified) **Description** The issue is related to a deserialization mechanism flaw in Microsoft Office and Microsoft 365 Apps for Enterprise packages. This allows a remote attacker to execute arbitrary code on the system. The vulnerability can be exploited by attackers to affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows DWM Core Library (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the Windows DWM Core Library. This vulnerability allows attackers to affect the system. It has been linked to cyberattacks involving QakBot, a notorious banking trojan. The vulnerability is being actively exploited by QakBot and other malware. Researchers have identified a new zero-day vulnerability in Windows, designated as this issue, and it is being used by multiple attackers. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Edge (Chromium-based) (affected versions not specified) **Description** The issue is related to insufficient access control in Microsoft Edge, which can be exploited by an attacker to elevate their privileges using a specially crafted file. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Remote Desktop Client versions prior to 1.2.5105 **Description** The issue is related to errors in synchronization when using a shared resource in the Remote Desktop Protocol (RDP) of the Windows operating system. This can allow a remote attacker to execute arbitrary code. **Recommendations** For versions prior to 1.2.5105, update to version 1.2.5105 or later to resolve the issue. As a temporary workaround, consider restricting access to the Remote Desktop Protocol to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to an elevation-of-privilege vulnerability in the Windows Graphics Component, which is caused by insufficient access restrictions. This vulnerability can be exploited by an attacker to elevate their privileges. The vulnerability is also described as a type confusion local privilege escalation vulnerability. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Graphics Component (affected versions not specified) **Description** The issue is related to insufficient access restrictions in the Windows Graphics Component of Windows operating systems. It allows an attacker to bypass security restrictions and elevate their privileges. This can affect the system, potentially leading to increased access for malicious actors. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Common Log File System Driver (affected versions not specified) **Description** The issue is related to an elevation-of-privilege vulnerability in the Windows Common Log File System (CLFS) Driver. This vulnerability allows attackers to affect the system. It has been exploited in the wild, with ransomware operators using it to target victims. The vulnerability is associated with a buffer overflow in memory, which can be exploited to elevate privileges. There have been reports of this vulnerability being used by ransomware groups, including Nokoyawa, in attacks on small and medium-sized businesses in various regions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to a buffer overflow in memory in the Windows Common Log File System Driver, which can allow an attacker to execute arbitrary code with system privileges. It is a privilege escalation vulnerability that enables attackers to impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.