Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 885 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-10-16 | CVE-2020-16955 | <p>An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.</p> <p>To exploit this vulnerability, an attacker would need to convince a user to open a specially crafted file.</p> <p>The security update addresses the vulnerability by correcting how Microsoft Office Click-to-Run (C2R) components handle these files.</p> | 365_apps, Office | N/A | ||
| 2020-10-16 | CVE-2020-16957 | <p>A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p> <p>An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file.</p> <p>The update addresses the vulnerability by correcting the way the Microsoft Office Access Connectivity Engine handles objects in memory.</p> | 365_apps, Office | N/A | ||
| 2020-11-11 | CVE-2020-17019 | Microsoft Excel Remote Code Execution Vulnerability | Office | N/A | ||
| 2020-11-11 | CVE-2020-17020 | Microsoft Word Security Feature Bypass Vulnerability | 365_apps, Office, Word | N/A | ||
| 2020-11-11 | CVE-2020-17064 | Microsoft Excel Remote Code Execution Vulnerability | 365_apps, Excel, Office, Office_web_apps | N/A | ||
| 2020-11-11 | CVE-2020-17062 | Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability | 365_apps, Office | N/A | ||
| 2020-11-11 | CVE-2020-17063 | Microsoft Office Online Spoofing Vulnerability | 365_apps, Office | N/A | ||
| 2020-11-11 | CVE-2020-17065 | Microsoft Excel Remote Code Execution Vulnerability | 365_apps, Excel, Office, Office_online_server, Office_web_apps | N/A | ||
| 2020-11-11 | CVE-2020-17067 | Microsoft Excel Security Feature Bypass Vulnerability | 365_apps, Excel, Office | N/A | ||
| 2020-12-10 | CVE-2020-17119 | Microsoft Outlook Information Disclosure Vulnerability | 365_apps, Office, Outlook | N/A |