Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 930 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-04-08 | CVE-2025-29792 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. | 365_apps, Office, Office_long_term_servicing_channel | 7.3 | ||
| 2025-04-08 | CVE-2025-27752 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2025-04-08 | CVE-2025-29791 | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2025-04-08 | CVE-2025-29816 | Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network. | 365_apps, Office, Office_long_term_servicing_channel, Word | N/A | ||
| 2025-04-08 | CVE-2025-29792 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. | 365_apps, Office, Office_long_term_servicing_channel | 7.3 | ||
| 2025-04-08 | CVE-2025-29816 | Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network. | 365_apps, Office, Office_long_term_servicing_channel, Word | N/A | ||
| 2025-06-10 | CVE-2025-47164 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2025-06-10 | CVE-2025-47162 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A | ||
| 2025-06-10 | CVE-2025-47165 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2025-06-10 | CVE-2025-47167 | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. | 365_apps, Office, Office_long_term_servicing_channel | N/A |