Microsoft OneNote Spoofing (August 2023)

medium Nessus Plugin ID 179925

Language:

Version 1.7 Apr 11, 2025, 1:33 AM IAVM reference Plugin Feed: 202504110133
Version 1.6 Sep 9, 2024, 10:05 PM Plugin metadata (Adding correct CPE for Microsoft OneNote.) Plugin Feed: 202409092205
Version 1.5 Mar 27, 2024, 7:16 PM Detection (store app vuln plugins will require paranoia when we are unable to determine path) Plugin Feed: 202403271916
Version 1.4 Nov 15, 2023, 2:17 PM CVSS metrics ("CVSSv2 score" set to 5.5. "CVSSv3 score" set to 5.4. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N". "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N") CVSSv3 severity (based on None, severity decreased from "High" to "Medium") Plugin Feed: 202311151417
Version 1.3 Nov 7, 2023, 3:08 PM CVSS metrics ("CVSSv2 score" set to 5.0. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N". "CVSSv3 score" set to 7.5. "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N") CVSSv3 severity (based on None, severity increased from "Medium" to "High") Plugin Feed: 202311071508
Version 1.2 Aug 21, 2023, 2:10 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") Exploit attributes ("Exploit available" set to "False". "Exploitability ease" set to "No known exploits are available") Plugin Feed: 202308211410
Version 1.1 Aug 18, 2023, 12:03 PM IAVM reference STIG Severity (set to "II") Plugin Feed: 202308181203
Version 1.0 Aug 17, 2023, 6:05 PM New Plugin Feed: 202308171805

* Changelogs are generally available for changes made after Nov 1, 2022