Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 879 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-10 | CVE-2025-47176 | '.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally. | 365_apps, Office | N/A | ||
| 2022-08-09 | CVE-2022-33631 | Microsoft Excel Security Feature Bypass Vulnerability | 365_apps, Excel, Office, Office_long_term_servicing_channel | N/A | ||
| 2024-02-13 | CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulnerability | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2019-06-12 | CVE-2019-1034 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user with the same permissions as the current user. To exploit the vulnerability, a user must open a specially crafted file with an affected... | Office, Office_365_proplus, Office_online_server, Office_web_apps, Sharepoint_enterprise_server, Sharepoint_server, Word | 7.8 | ||
| 2019-06-12 | CVE-2019-1035 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user with the same permissions as the current user. To exploit the vulnerability, a user must open a specially crafted file with an affected... | Office, Office_365_proplus, Office_online_server, Sharepoint_server | 7.8 | ||
| 2025-05-13 | CVE-2025-29977 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2025-05-13 | CVE-2025-29979 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2025-05-13 | CVE-2025-30375 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2025-05-13 | CVE-2025-30376 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2025-05-13 | CVE-2025-30377 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | 7.8 |