Shilongan

**Name of the Vulnerable Software and Affected Versions** Microsoft Photos App (affected versions not specified) **Description** The issue is related to insufficient input validation in the Microsoft Photos App, which can be exploited to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Word (affected versions not specified) **Description** The issue is related to incorrect code generation management in Microsoft Word. Exploitation of this issue may allow an attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Excel (affected versions not specified) **Description** The issue is related to incorrect code generation management in Microsoft Office, Microsoft Excel, and Microsoft 365 packages. This allows a remote attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Word (affected versions not specified) **Description** The issue is related to incorrect code generation management in Microsoft Office and Microsoft 365 Apps for Enterprise packages. Exploitation of this issue may allow an attacker to execute arbitrary code, potentially leading to full system compromise. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Graphics Component (affected versions not specified) **Description** The issue is related to a lack of protection for sensitive data in the Microsoft Office Graphics Component. Exploitation of this issue may allow an attacker to gain unauthorized access to protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.