all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers using Weaponized Office Document to Exploit Windows Search RCE

Add to bookmarks
Nov. 23, 2023, 12:10 p.m. | Eswar

Cyber Security News cybersecuritynews.com

A new attack chain campaign has been discovered, which involves the exploitation of CVE-2023-36884 and CVE-2023-36584. CVE-2023-36884 was a remote code execution vulnerability, and CVE-2023-36584 was a security bypass vulnerability that can be used to exploit CVE-2023-36884. CVE-2023-36884 was given a severity rating of 8.8 (High), and CVE-2023-36584’s severity rating was 5.4 (Medium). However, the […]


The post Hackers using Weaponized Office Document to Exploit Windows Search RCE appeared first on Cyber Security News.

attack attack chain bypass bypass vulnerability campaign code code execution cve cve-2023-36584 cve-2023-36884 cyber security document exploit exploitation hackers high office rating rce remote code remote code execution search security security bypass severity threats vulerability vulnerability windows

Visit resource

More from cybersecuritynews.com / Cyber Security News

SandStorm Hackers Added New Kapeka Tool to it’s Arsenal 6 hours ago | cybersecuritynews.com
arsenal attacks backdoor cyber security +10
New Cuckoo Malware Attacking macOS Users to Steal Sensitive Data 19 hours ago | cybersecuritynews.com
analysis arm bird cuckoo +23
Finland Warns Of New Android Malware Stealing Banking Logins 19 hours ago | cybersecuritynews.com
android android device android malware apps +22
MedStar Health Breach: Hackers Accessed Emails & Files 21 hours ago | cybersecuritynews.com
access accounts breach compromised +24
Multiple Xiaomi Android Devices Vulnerability Let Attackers Hijack Phones 21 hours ago | cybersecuritynews.com
android android devices apps attackers +26
Internal Communication Gaps Exposes Organizations to Cyber Attacks 22 hours ago | cybersecuritynews.com
alignment attacks challenges ciso +24
AI Powered Deepfake Detector to Combact Deepfakes Threats 23 hours ago | cybersecuritynews.com
advanced ai-powered capabilities collaboration +17
10 Best Active Directory Management Tools 2024 1 day ago | cybersecuritynews.com
accounts active directory cyber security data +21
PostgreSQL Security Flaws Let Attackers Execute Code 1 day ago | cybersecuritynews.com
administration attackers authentication authentication bypass +28

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Offensive Security Engineering Technical Lead, Device Security

@ Google | Amsterdam, Netherlands
View on infosec-jobs.com

Senior Security Engineering Program Manager

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Information System Security Analyst

@ Resource Management Concepts, Inc. | Dahlgren, Virginia, United States
View on infosec-jobs.com

Critical Facility Security Officer - Evening Shift

@ Allied Universal | Charlotte, NC, United States
View on infosec-jobs.com

Information System Security Officer, Junior

@ Resource Management Concepts, Inc. | Patuxent River, Maryland, United States
View on infosec-jobs.com

Security Engineer

@ JPMorgan Chase & Co. | Plano, TX, United States
View on infosec-jobs.com
View more jobs