vulnerabilities present in Microsoft Office

Microsoft has identified vulnerabilities in various Office products such as Sharepoint, Word, Project, and Excel. A malicious individual can exploit these vulnerabilities to carry out attacks that can cause various types of damage, as described in the tables below. For successful exploitation, th...

CVE-2026-42835

Improper neutralization of special elements in output used by a downstream component 'injection' in Microsoft Teams for Android allows an authorized attacker to disclose information over a network...

CVE-2026-42835

Microsoft Teams for Android contains a vulnerability described as improper neutralization of special elements in output used by a downstream component ('injection'), enabling an authorized attacker to disclose information over a network. Affected software: Microsoft Teams for Android. Root cause:...

PT-2026-47878

Improper neutralization of special elements in output used by a downstream component 'injection' in Microsoft Teams for Android allows an authorized attacker to disclose information over a network...

The vulnerability of Microsoft Teams’ corporate platform for Android, related to information disclosure, allows attackers to gain unauthorized access to protected information.

The vulnerability of Microsoft Teams’ corporate platform for Android is related to the disclosure of information. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

CVE-2024-21448

Microsoft Teams for Android Information Disclosure Vulnerability...

PT-2024-2278 · Microsoft · Teams

Name of the Vulnerable Software and Affected Versions: Microsoft Teams for Android affected versions not specified Description: The issue is related to an information disclosure vulnerability. Exploitation of this vulnerability may allow an attacker to gain unauthorized access to protected...

The vulnerability of Microsoft Teams’ corporate platform for Android, related to insufficient protection of sensitive data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Microsoft Teams’ corporate platform for Android is related to insufficient protection of sensitive data. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information by downloading and running a specially created application...

PT-2024-1883 · Microsoft · Teams For Android

Name of the Vulnerable Software and Affected Versions: Microsoft Teams for Android affected versions not specified Description: The issue is related to insufficient protection of service data in Microsoft Teams for Android, which can allow an attacker to gain unauthorized access to protected...

Microsoft Teams Security Vulnerability

Microsoft Teams is a software from Microsoft USA for online meetings, chat, and cloud storage capabilities. A security vulnerability exists in Microsoft Teams. An attacker exploiting this vulnerability could remotely execute code. The following products and versions are affected: Microsoft Teams...

The vulnerability of Microsoft Teams’ corporate platform for Android, which stems from insufficient validation of input data, allows a hacker to trigger an emergency shutdown of the application.

The vulnerability of Microsoft Teams’ corporate platform for Android exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause the application to crash remotely...

The vulnerability of Microsoft Teams’ corporate platform for Android, related to the inclusion of a web function from an unreliable source, allows a perpetrator to disclose protected information.

The vulnerability of Microsoft Teams’ corporate platform for Android is related to the inclusion of a web function from an unreliable source. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by sending messages with specially created links for previewing...