Lucene search
Hossein Lotfi of Trend Micro Zero Day InitiativeZDI-22-1287HistorySep 19, 2022 - 12:00 a.m.
Microsoft Office Visio EMF File Parsing Memory Corruption Remote Code Execution Vulnerability
2022-09-1900:00:00
Hossein Lotfi of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
7
0.004 Low
EPSS
Percentile
73.2%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of EMF files. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
nvd
nvd
CVE-2022-37963
2022-09-13 19:15:12
mscve
mscve
Microsoft Office Visio Remote Code Execution Vulnerability
2022-09-13 07:00:00
cvelist
cvelist
CVE-2022-37963 Microsoft Office Visio Remote Code Execution Vulnerability
2022-09-13 18:42:11
cve
cve
CVE-2022-37963
2022-09-13 19:15:12
prion
prion
Remote code execution
2022-09-13 19:15:00
openvas
openvas
nessus
nessus
Security Updates for Microsoft Visio Products C2R (September 2022)
2022-09-15 00:00:00
kaspersky
kaspersky
KLA19250 Multiple vulnerabilities in Microsoft Office
2022-09-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2022
2022-09-13 20:11:08