Microsoft Office September security updates fix critical RCE bugs

[silversurfer]

Content source

https://www.bleepingcomputer.com/news/security/microsoft-office-september-security-updates-fix-critical-rce-bugs/

Microsoft has released the September 2020 Office security updates with a total of 30 security updates and 5 cumulative updates for 7 different products, fixing 13 vulnerabilities that could enable remote attackers to execute arbitrary code on vulnerable systems.

All September 2020 Patch Tuesday Microsoft Office security advisories:

Tag	CVE ID	Title	Severity
Microsoft Office	CVE-2020-1594	Microsoft Excel Remote Code Execution Vulnerability	Important
Microsoft Office	CVE-2020-1335	Microsoft Excel Remote Code Execution Vulnerability	Important
Microsoft Office	CVE-2020-16855	Microsoft Office Information Disclosure Vulnerability	Important
Microsoft Office	CVE-2020-1338	Microsoft Word Remote Code Execution Vulnerability	Important
Microsoft Office	CVE-2020-1332	Microsoft Excel Remote Code Execution Vulnerability	Important
Microsoft Office	CVE-2020-1224	Microsoft Excel Information Disclosure Vulnerability	Important
Microsoft Office	CVE-2020-1218	Microsoft Word Remote Code Execution Vulnerability	Important
Microsoft Office	CVE-2020-1193	Microsoft Excel Remote Code Execution Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1345	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1205	Microsoft SharePoint Spoofing Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1210	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1514	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1595	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1523	Microsoft SharePoint Server Tampering Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1440	Microsoft SharePoint Server Tampering Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1200	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1482	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1198	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1227	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1576	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1452	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1575	Microsoft Office SharePoint XSS Vulnerability	Important
Microsoft Office SharePoint	CVE-2020-1453	Microsoft SharePoint Remote Code Execution Vulnerability	Critical
Microsoft Office SharePoint	CVE-2020-1460	Microsoft SharePoint Server Remote Code Execution Vulnerability	Critical

This month's Microsoft Office security updates are delivered via the Download Center and through the Microsoft Update platform.

 

[Gandalf_The_Grey]

And these are the security updates for Microsoft 365:

September 08, 2020
Monthly Enterprise Channel: Version 2007 (Build 13029.20534)
Monthly Enterprise Channel: Version 2006 (Build 13001.20648)
Semi-Annual Enterprise Channel (Preview): Version 2008 (Build 13127.20408)
Semi-Annual Enterprise Channel: Version 2002 (Build 12527.21104)
Semi-Annual Enterprise Channel: Version 1908 (Build 11929.20946)
Office 2019 Volume Licensed: Version 1808 (Build 10366.20016)

Release notes for Microsoft Office security updates - Office release notes

Provides IT Pros with release notes for Microsoft Office Security Updates

docs.microsoft.com