The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities :
– Microsoft Excel remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. (CVE-2021-31939)
– Microsoft Office Graphics remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. (CVE-2021-31940, CVE-2021-31941) Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.Read More