353 matches found
CVE-2020-1342
An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1445.
CVE-2020-1563
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with adminis...
CVE-2021-42296
Microsoft Word Remote Code Execution Vulnerability
CVE-2023-33146
Microsoft Office Remote Code Execution Vulnerability
CVE-2023-36568
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
CVE-2023-36865
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2021-28452
Microsoft Outlook Memory Corruption Vulnerability
CVE-2021-31939
Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-21738
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2023-35636
Microsoft Outlook Information Disclosure Vulnerability
CVE-2020-1496
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administ...
CVE-2020-1503
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.To exploit the vulnerability, an attacker could craft a special documen...
CVE-2021-1711
Microsoft Office Remote Code Execution Vulnerability
CVE-2021-1716
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-37962
Microsoft PowerPoint Remote Code Execution Vulnerability
CVE-2023-21741
Microsoft Office Visio Information Disclosure Vulnerability
CVE-2020-1229
A security feature bypass vulnerability exists in Microsoft Outlook when Office fails to enforce security settings configured on a system, aka 'Microsoft Outlook Security Feature Bypass Vulnerability'.
CVE-2021-40479
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-21988
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-41105
Microsoft Excel Information Disclosure Vulnerability
CVE-2022-41106
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1449
A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file, aka 'Microsoft Project Remote Code Execution Vulnerability'.
CVE-2020-1483
A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative ...
CVE-2023-36866
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2020-1224
<p>An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.</p><p>To exploit the vulnerability, an attacker could craft a spec...
CVE-2021-28456
Microsoft Excel Information Disclosure Vulnerability
CVE-2020-1498
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administ...
CVE-2020-17062
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
CVE-2022-41107
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2020-1494
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administ...
CVE-2021-38656
Microsoft Word Remote Code Execution Vulnerability
CVE-2020-17020
Microsoft Word Security Feature Bypass Vulnerability
CVE-2020-17126
Microsoft Excel Information Disclosure Vulnerability
CVE-2022-22004
Microsoft Office ClickToRun Remote Code Execution Vulnerability
CVE-2023-21735
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-30101
Microsoft Office Remote Code Execution Vulnerability
CVE-2025-21345
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2025-21395
Microsoft Access Remote Code Execution Vulnerability
CVE-2020-1218
<p>A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the...
CVE-2020-1447
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.
CVE-2022-41063
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-41103
Microsoft Word Information Disclosure Vulnerability
CVE-2023-33151
Microsoft Outlook Spoofing Vulnerability
CVE-2021-40480
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-37963
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2022-38010
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2025-26630
Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.
CVE-2020-1335
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with admin...
CVE-2020-1502
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.To exploit the vulnerability, an attacker could craft a special documen...
CVE-2020-1581
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to execute code on the syste...