Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 933 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-07-08 | CVE-2025-49702 | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2025-07-08 | CVE-2025-49703 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel, Sharepoint_server, Word | N/A | ||
| 2025-07-08 | CVE-2025-49705 | Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel, Powerpoint | N/A | ||
| 2025-07-08 | CVE-2025-47994 | Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally. | 365_apps, Office, Office_long_term_servicing_channel, Sharepoint_enterprise_server | 8.6 | ||
| 2025-07-08 | CVE-2025-48812 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | 5.5 | ||
| 2025-07-08 | CVE-2025-49695 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | 8.4 | ||
| 2025-07-08 | CVE-2025-49696 | Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | 8.4 |