[English]Microsoft hat zum 15. Dezember 2020 noch eine Übersicht über Revisionen diverser CVEs veröffentlicht. Mir ist das Ganze die Nacht per Mail zugegangen, und ich stelle es hier zur Information ein.
Anzeige
Zur Einordnung: Die betreffenden Schwachstellen wurden mit den Office-Sicherheitsupdates vom 8. Dezember 2020 geschlossen. Die betreffende Update-Liste findet sich in meinem Blog-Beitrag Patchday Microsoft Office Updates (8. Dezember 2020). Microsoft hat im Nachgang die folgenden CVEs revidiert.
CVE-2020-17119: Outlook
– CVE-2020-17119 | Microsoft Outlook Information Disclosure Vulnerability
– Version 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to take
any action. See the Release Notes for more information and download links.
– Originally posted: December 8, 2020
– Updated: December 15, 2020
– Aggregate CVE Severity Rating: Important
CVE-2020-17123: Excel
– CVE-2020-17123 | Microsoft Excel Remote Code Execution Vulnerability
– Version 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to take
any action. See the Release Notes for more information and download links.
– Originally posted: December 8, 2020
– Updated: December 15, 2020
– Aggregate CVE Severity Rating: Important
CVE-2020-17124: PowerPoint
– CVE-2020-17124 | Microsoft PowerPoint Remote Code Execution Vulnerability
– Version 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to take
any action. See the Release Notes for more information and download links.
– Originally posted: December 8, 2020
– Updated: December 15, 2020
– Aggregate CVE Severity Rating: Important
CVE-2020-17126: Excel
– CVE-2020-17126 | Microsoft Excel Information Disclosure Vulnerability
– Version 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to take
any action. See the Release Notes for more information and download links.
– Originally posted: December 8, 2020
– Updated: December 15, 2020
– Aggregate CVE Severity Rating: Important
CVE-2020-17128: Excel
– CVE-2020-17128 | Microsoft Excel Remote Code Execution Vulnerability
– Version 2.0
– Reason for Revision: Microsoft is announcing the availability of the security
updates for Microsoft Office for Mac. Customers running affected Mac software
should install the update for their product to be protected from this
vulnerability. Customers running other Microsoft Office software do not need to take
any action. See the Release Notes for more information and download links.
– Originally posted: December 8, 2020
– Updated: December 15, 2020
– Aggregate CVE Severity Rating: Important
2015
