VYPR

Office 2016 Click-to-Run (C2R)

by Microsoft

CVEs (8)

  • CVE-2018-0841HigFeb 15, 2018
    risk 0.59cvss 8.8epss 0.20

    Microsoft Office 2016 Click-to-Run allows a remote code execution vulnerability due to how objects are handled in memory, aka "Office Remote Code Execution Vulnerability"

  • CVE-2023-33148HigJul 11, 2023
    risk 0.54cvss 7.8epss 0.02

    Microsoft Office Elevation of Privilege Vulnerability

  • CVE-2017-11935HigDec 12, 2017
    risk 0.52cvss 7.8epss 0.19

    Microsoft Office 2016 Click-to-Run (C2R) allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability".

  • CVE-2017-11825HigOct 13, 2017
    risk 0.52cvss 7.8epss 0.22

    Microsoft Office 2016 Click-to-Run (C2R) and Microsoft Office 2016 for Mac allow an attacker to use a specially crafted file to perform actions in the security context of the current user, due to how Microsoft Office handles files in memory, aka "Microsoft Office Remote Code…

  • CVE-2017-11939MedDec 12, 2017
    risk 0.43cvss 6.5epss 0.06

    Microsoft Office 2016 Click-to-Run (C2R) allows an information disclosure vulnerability due to the way Microsoft Office enforces DRM copy/paste permissions, aka "Microsoft Office Information Disclosure Vulnerability".

  • CVE-2020-16928Oct 16, 2020
    risk 0.01cvss epss 0.03

    An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to…

  • CVE-2022-22004Feb 9, 2022
    risk 0.00cvss epss 0.02

    Microsoft Office ClickToRun Remote Code Execution Vulnerability

  • CVE-2020-16934Oct 16, 2020
    risk 0.00cvss epss 0.02

    An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to…