365 Apps Security Vulnerabilities and Issues — 365 Apps CVE List

Lucene search

Microsoft365 Apps

13 matches found

CVE•added 2020/08/17 7:15 p.m.•131 views

CVE-2020-1583

An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.To exploit the vulnerability, an attacker could craft a special documen...

8.8CVSS8AI score0.18011EPSS

CVE•added 2020/08/17 7:15 p.m.•129 views

CVE-2020-1493

An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users to share attached files such that they are accessible by anonymous users where they should be restricted to specific users.To exploit this vulnerability, an atta...

5.5CVSS5.3AI score0.30155EPSS

CVE•added 2020/08/17 7:15 p.m.•121 views

CVE-2020-1495

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administ...

9.3CVSS8.7AI score0.15901EPSS

CVE•added 2020/08/17 7:15 p.m.•116 views

CVE-2020-1582

A remote code execution vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with adminis...

7.8CVSS7.9AI score0.11602EPSS

CVE•added 2020/08/17 7:15 p.m.•113 views

CVE-2020-1563

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with adminis...

9.3CVSS8.1AI score0.09677EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1496

9.3CVSS8.7AI score0.15375EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1503

5.5CVSS6.3AI score0.25763EPSS

CVE•added 2020/08/17 7:15 p.m.•108 views

CVE-2020-1483

A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative ...

9.3CVSS6AI score0.16968EPSS

CVE•added 2020/08/17 7:15 p.m.•106 views

CVE-2020-1498

9.3CVSS8.7AI score0.15901EPSS

CVE•added 2020/08/17 7:15 p.m.•104 views

CVE-2020-1494

9.3CVSS8.7AI score0.15375EPSS

CVE•added 2020/08/17 7:15 p.m.•100 views

CVE-2020-1502

5.5CVSS6.3AI score0.22521EPSS

CVE•added 2020/08/17 7:15 p.m.•100 views

CVE-2020-1581

An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to execute code on the syste...

9.3CVSS7.8AI score0.09677EPSS

CVE•added 2020/08/17 7:15 p.m.•92 views

CVE-2020-1497

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.To exploit the vulnerability, an attacker could craft a special docume...

5.5CVSS6.3AI score0.25763EPSS