Lucene search
+L
MicrosoftExcel2013

145 matches found

CVE
CVE
added 2021/11/10 12:47 a.m.1337 views

CVE-2021-42292

CVE-2021-42292 is a Microsoft Excel Security Feature Bypass vulnerability in Microsoft Excel that enables local privilege bypass (local access required). The vulnerability is documented across multiple feeds, with patched fixes provided by Microsoft via Patch Tuesday advisories. Connected sources...

7.8CVSS7.6AI score0.31949EPSS
In wild
CVE
CVE
added 2016/12/20 5:54 a.m.1096 views

CVE-2016-7262

CVE-2016-7262 is a Microsoft Office vulnerability (Microsoft Excel family) described as a Security Feature Bypass: a crafted cell mishandled on click can allow user-assisted remote command execution. Affected products include Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, Office Compatibi...

7.8CVSS7.8AI score0.58204EPSS
In wild
CVE
CVE
added 2019/09/11 9:25 p.m.1094 views

CVE-2019-1297

CVE-2019-1297 is a Microsoft Excel remote code execution vulnerability caused by improper handling of memory objects. An attacker can exploit it by convincing a user to open a specially crafted file, executing arbitrary code in the user’s context (higher impact if admin). The vulnerability is add...

9.3CVSS8.8AI score0.21805EPSS
In wild
CVE
CVE
added 2023/09/12 4:58 p.m.475 views

CVE-2023-36766

CVE-2023-36766 is a Microsoft Excel information-disclosure vulnerability, affecting Excel/Office components. The vulnerability enables information disclosure with a local attack surface and requires user interaction. Public details in connected documents confirm affected products (Microsoft Excel...

7.8CVSS6AI score0.01487EPSS
CVE
CVE
added 2022/05/10 8:34 p.m.275 views

CVE-2022-29110

CVE-2022-29110 refers to a Microsoft Excel remote code execution vulnerability documented in the NVD entry. Available connected documents provide concrete remediation: for Excel 2016, the May 10, 2022 security update KB5002196 addresses this issue (and KB5002196 notes Excel 2016 install requireme...

9.3CVSS7.8AI score0.03602EPSS
CVE
CVE
added 2023/03/14 4:55 p.m.254 views

CVE-2023-23399

The CVE-2023-23399 vulnerability affects Microsoft Excel (Office/Excel) and is described as a remote code execution vulnerability. Exploit-DB reports a case for Microsoft Excel 365 MSO (64-bit) v2302 build 16.0.16130.20186 with RCE via a specially crafted file, illustrating a crafted-file attack ...

7.8CVSS7.8AI score0.02532EPSS
CVE
CVE
added 2021/11/10 12:46 a.m.224 views

CVE-2021-40442

CVE-2021-40442 is a Microsoft Excel remote code execution vulnerability. The connected Nessus/NVIDIA sources reiterate that Excel can be exploited to run arbitrary code (RCE) on the target, with exploitation possible via Microsoft Excel/Office components. The vulnerability is addressed by Microso...

7.8CVSS7.6AI score0.0207EPSS
CVE
CVE
added 2022/04/15 7:5 p.m.223 views

CVE-2022-26901

Technical details are not provided in the supplied documents. No affected products, versions, root cause, impact, or fixes are listed here. Monitor official advisories for updates.

7.8CVSS7.8AI score0.02583EPSS
CVE
CVE
added 2023/05/09 5:3 p.m.223 views

CVE-2023-24953

CVE-2023-24953 corresponds to a Microsoft Excel remote code execution vulnerability. Public documents describe impact as the ability to execute arbitrary code in Excel, enabling local or user-initiated exploitation. The vulnerability is addressed by Microsoft security updates for Excel (e.g., KB5...

7.8CVSS7.8AI score0.00705EPSS
CVE
CVE
added 2020/01/14 11:11 p.m.216 views

CVE-2020-0650

CVE-2020-0650 : A remote code execution vulnerability in Microsoft Excel/VBA objects handling in memory. Connected documents (Nessus/OpenVAS plugins) tie this CVE to multiple Office/Excel vulnerabilities discovered in January 2020, affecting Excel components across various Office suites (includin...

9.3CVSS7.9AI score0.17168EPSS
CVE
CVE
added 2019/07/29 2:9 p.m.213 views

CVE-2019-1111

CVE-2019-1111 describes a remote code execution vulnerability in Microsoft Excel due to improper handling of in-memory objects. Exploitation could allow arbitrary code execution in the context of the current user; with administrative rights, control of the system is possible. The vulnerability is...

9.3CVSS8.8AI score0.1316EPSS
CVE
CVE
added 2020/04/15 3:12 p.m.209 views

CVE-2020-0760

CVE-2020-0760 is a remote code execution vulnerability affecting Microsoft Office products (Word/Excel/PowerPoint/Visio) via improper loading of arbitrary type libraries. The root cause is how Office loads type libraries, which could allow an attacker to execute arbitrary code in the context of t...

8.8CVSS8.5AI score0.0861EPSS
CVE
CVE
added 2021/07/14 5:54 p.m.207 views

CVE-2021-34501

CVE-2021-34501 is described as a Microsoft Excel remote code execution vulnerability. Connected materials identify affected products as Excel in multiple Office suites (including 2013/2016 and Office Online Server variants) and indicate that exploitation could allow remote code execution. Public ...

8.8CVSS7.8AI score0.53178EPSS
CVE
CVE
added 2022/06/15 9:52 p.m.205 views

CVE-2022-30173

CVE-2022-30173 is identified as a Microsoft Excel Remote Code Execution vulnerability. Connected sources confirm an Excel-related RCE in Office/Excel 2016 and reference security update KB5002208 as the remediation path. The documents do not disclose the exact root cause, vulnerable component/vers...

7.8CVSS7.8AI score0.02162EPSS
CVE
CVE
added 2019/07/29 2:8 p.m.202 views

CVE-2019-1110

CVE-2019-1110 affects Microsoft Excel; a remote code execution vulnerability exists when Excel fails to properly handle objects in memory. Exploitation could allow running arbitrary code in the user’s context; impact is high. The issue is addressed by Microsoft Office security updates in the July...

9.3CVSS8.8AI score0.1316EPSS
CVE
CVE
added 2020/10/16 10:17 p.m.199 views

CVE-2020-16929

CVE-2020-16929 (Microsoft Excel RCE) is a remote code execution vulnerability caused by improper handling of in-memory objects. Successful exploitation requires a user to open a specially crafted Excel file, via email or web-hosted lure. If the user runs with administrative rights, an attacker co...

7.8CVSS8.4AI score0.03697EPSS
CVE
CVE
added 2023/03/14 4:55 p.m.198 views

CVE-2023-23398

Technical details about CVE-2023-23398 are not provided in the supplied documents. Public information in these sources is limited; monitor for updates from official advisories (MSRC) and vendors.

7.1CVSS6AI score0.00617EPSS
CVE
CVE
added 2022/01/11 8:22 p.m.196 views

CVE-2022-21840

CVE-2022-21840 is a Microsoft Office remote code execution vulnerability. Public documentation notes an Office RCE that can be exploited via social engineering (e.g., opening a malicious attachment or visiting a malicious site) and may require user interaction. The CVSS details indicate high impa...

8.8CVSS8.8AI score0.02924EPSS
CVE
CVE
added 2022/08/09 7:49 p.m.195 views

CVE-2022-33631

Technical details about CVE-2022-33631 are not publicly available in the provided documents. Monitor for updates from official sources for affected products, vulnerable components, and fixes.

7.3CVSS7.1AI score0.00774EPSS
CVE
CVE
added 2020/12/09 11:36 p.m.189 views

CVE-2020-17123

CVE-2020-17123 is a Microsoft Excel Remote Code Execution vulnerability. Public documents confirm an RCE exists in Excel when processing specially crafted Office files, with the underlying issue tied to Excel components/file handling (the CVE is listed among Excel-related updates for December 202...

9.3CVSS7.8AI score0.03429EPSS
CVE
CVE
added 2020/12/09 11:36 p.m.187 views

CVE-2020-17128

CVE-2020-17128 is a Microsoft Excel remote code execution vulnerability that is cited across multiple Nessus plugins as part of the December 2020 Office security updates. Technical details in the connected documents show Excel-related RCE vulnerabilities addressed together with other CVEs (e.g., ...

9.3CVSS7.8AI score0.02618EPSS
CVE
CVE
added 2021/04/13 7:33 p.m.187 views

CVE-2021-28449

CVE-2021-28449 is described as a Microsoft Office remote code execution vulnerability affecting the Office suite (Office/Word/Excel). Connected documents confirm the CVE is part of April 2021 Office updates and is listed alongside other Office RCE CVEs (e.g., CVE-2021-28453, CVE-2021-28454, CVE-2...

7.8CVSS7.8AI score0.02471EPSS
CVE
CVE
added 2021/09/15 11:24 a.m.187 views

CVE-2021-38655

CVE-2021-38655 is a Microsoft Excel remote code execution vulnerability referenced across multiple catalogs. The CVE entry, tied to Excel/Office components, is confirmed in the NVD entry and is cited by various advisories and Nessus plugins as affecting Excel remote code execution, with related C...

7.8CVSS7.5AI score0.04896EPSS
CVE
CVE
added 2021/05/11 7:11 p.m.180 views

CVE-2021-31179

Technical details about CVE-2021-31179 are not provided in the supplied documents. Monitor for updates from Microsoft and vulnerability databases for affected products, root cause, and remediation.

7.8CVSS7.8AI score0.13494EPSS
CVE
CVE
added 2020/06/09 7:43 p.m.177 views

CVE-2020-1225

CVE-2020-1225 and CVE-2020-1226 are remote code execution vulnerabilities in Microsoft Excel related to improper handling of objects in memory. Public sources in the provided documents identify Excel (Office) as affected and explicitly reference the vulnerability family as Excel RCE. The connecte...

9.3CVSS8.5AI score0.17157EPSS
CVE
CVE
added 2023/06/13 11:25 p.m.176 views

CVE-2023-32029

CVE-2023-32029 is a Microsoft Excel/Office remote code execution vulnerability. The CVSSv3.1 metrics indicate a HIGH impact (C/H, I/H, A/H) with a LOCAL attack vector, LOW attack complexity, no privileges required, but USER INTERACTION is required. Several connected scanner entries (Nessus/OpenVA...

7.8CVSS7.8AI score0.53513EPSS
CVE
CVE
added 2021/05/11 7:11 p.m.174 views

CVE-2021-31177

CVE-2021-31177 is a Microsoft Office/Excel remote code execution vulnerability. Connected sources confirm affected products include Microsoft Office and Excel (C2R and MSI variants) with the issue originating from Office/Excel handling crafted content. Patches released May 11, 2021 (KB5001918 for...

7.8CVSS7.8AI score0.03073EPSS
CVE
CVE
added 2020/10/16 10:17 p.m.169 views

CVE-2020-16932

CVE-2020-16932 is a Microsoft Excel remote code execution vulnerability. The issue stems from how Excel handles objects in memory, allowing an attacker to run arbitrary code in the context of the current user when a specially crafted Excel file is opened. Exploitation can occur via email (malicio...

7.8CVSS8.4AI score0.04824EPSS
CVE
CVE
added 2021/01/12 7:42 p.m.169 views

CVE-2021-1714

CVE-2021-1714 is an Excel remote code execution vulnerability affecting Microsoft Excel (Office). The connected sources indicate a vulnerability in Excel with a CVSS v3.1 base score of 7.8 (HIGH) and an attack vector LOCAL requiring user interaction, with confidentiality, integrity, and availabil...

7.8CVSS7.8AI score0.03101EPSS
CVE
CVE
added 2019/11/12 6:53 p.m.168 views

CVE-2019-1448

CVE-2019-1448 is a Microsoft Excel remote code execution vulnerability. The connected documents describe that Excel fails to properly handle objects in memory, leading to the execution of arbitrary code when a user opens a specially crafted file (as seen in Office/Excel advisories and Nessus entr...

9.3CVSS7.9AI score0.28178EPSS
CVE
CVE
added 2020/10/16 10:17 p.m.165 views

CVE-2020-16931

CVE-2020-16931 affects Microsoft Excel. A remote code execution flaw arises from improper handling of in-memory objects, allowing arbitrary code execution in the attacker’s context if a user opens a specially crafted Excel file. Exploitation scenarios include email attachments or hosting a crafte...

7.8CVSS8.4AI score0.04824EPSS
CVE
CVE
added 2021/10/13 12:27 a.m.165 views

CVE-2021-40474

CVE-2021-40474 : Microsoft Excel remote code execution vulnerability. According to the sources, it affects Office/Excel components and has a CVSSv3.1 base score of 7.8 (vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H). The issue is described as a local vulnerability that requires user intera...

7.8CVSS7.5AI score0.02194EPSS
CVE
CVE
added 2023/06/13 11:26 p.m.164 views

CVE-2023-33133

CVE-2023-33133 is an Excel remote code execution vulnerability affecting Microsoft Office Excel/Office Web Apps assets. The CVSS v3.1 base score is 7.8 (HIGH) withLOCAL attack vector, LOW complexity, and user interaction required; impact is high on confidentiality, integrity, and availability. Co...

7.8CVSS7.8AI score0.44048EPSS
CVE
CVE
added 2021/06/08 10:46 p.m.163 views

CVE-2021-31939

CVE-2021-31939 is a Microsoft Excel remote code execution vulnerability reported in the office/Excel component. According to the connected sources, the issue can allow an attacker to execute arbitrary code on a vulnerable system when a user opens or processes specially crafted content, with the C...

7.8CVSS7.7AI score0.13337EPSS
CVE
CVE
added 2013/09/11 10:0 a.m.162 views

CVE-2013-1315

CVE-2013-1315 is a remote code execution/memory corruption vulnerability affecting Microsoft Office components. The public records identify affected products as Microsoft SharePoint Server 2007 SP3, 2010 SP1/SP2, 2013; Office Web Apps 2010; Excel 2003 SP3/2007 SP3/2010 SP1/SP2/2013/2013 RT; Offic...

9.3CVSS7.6AI score0.28702EPSS
CVE
CVE
added 2021/10/13 12:27 a.m.162 views

CVE-2021-40485

CVE-2021-40485 is described as a Microsoft Excel Remote Code Execution vulnerability. The provided data cites a CVSSv3.1 base score of 7.8 (HIGH), with LOCAL attack vector, LOW attack complexity, NONE privileges required, and user interaction required; impact is HIGH for confidentiality, integrit...

7.8CVSS7.7AI score0.02545EPSS
CVE
CVE
added 2020/06/09 7:43 p.m.161 views

CVE-2020-1226

CVE-2020-1225 and CVE-2020-1226 are documented as remote code execution vulnerabilities in Microsoft Excel (Office) arising from improper handling of objects in memory. The connected Nessus entry for Excel C2R (June 2020) references Excel products being affected by a security feature bypass vulne...

9.3CVSS8.5AI score0.17157EPSS
CVE
CVE
added 2020/01/14 11:11 p.m.159 views

CVE-2020-0652

CVE-2020-0652 is a remote code execution vulnerability in Microsoft Office caused by improper handling of memory objects. The NVD entry lists a CVSSv3.1 vector of CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H with a base score of 7.8 (HIGH), indicating a local exploit requiring user interaction an...

7.8CVSS7.8AI score0.16962EPSS
CVE
CVE
added 2021/05/11 7:11 p.m.158 views

CVE-2021-31175

CVE-2021-31175 is a Microsoft Office/Excel remote code execution vulnerability described as a Microsoft Office Remote Code Execution Vulnerability. Connection documents confirm it is part of a set of Office/Excel remote code execution vulnerabilities addressed by May 2021 security updates (e.g., ...

7.8CVSS7.8AI score0.03156EPSS
CVE
CVE
added 2019/09/11 9:24 p.m.156 views

CVE-2019-1263

CVE-2019-1263 — Microsoft Excel Information Disclosure . The connected Nessus/Office update docs confirm an information disclosure in Excel where memory contents may be exposed. The vulnerability is tied to Excel's handling of in-memory objects, enabling potential leakage of sensitive data. The O...

5.5CVSS6AI score0.07768EPSS
CVE
CVE
added 2020/12/09 11:36 p.m.152 views

CVE-2020-17125

CVE-2020-17125 is a Microsoft Excel Remote Code Execution vulnerability. The connected Nessus/Excel update references confirm: exploit requires a user, local access, and a specially crafted Excel file can trigger arbitrary code execution on affected Office/Excel builds. Remediation is available v...

9.3CVSS7.8AI score0.03308EPSS
CVE
CVE
added 2022/02/09 4:37 p.m.152 views

CVE-2022-22716

CVE-2022-22716 affects Microsoft Excel (part of Office) with an information-disclosure vulnerability. Publicly documented impact is disclosure of potentially sensitive information. Microsoft and third-party advisories reference Excel-specific fixes in February 2022 security updates (e.g., KB50021...

5.5CVSS5.4AI score0.04642EPSS
CVE
CVE
added 2020/08/17 7:13 p.m.151 views

CVE-2020-1496

CVE-2020-1496 is a Microsoft Excel remote code execution vulnerability where the app fails to properly handle objects in memory. The issue allows an attacker to run arbitrary code in the context of the current user, with higher impact if the user has administrative rights. Exploitation requires a...

9.3CVSS9AI score0.04212EPSS
CVE
CVE
added 2020/12/09 11:36 p.m.151 views

CVE-2020-17129

CVE-2020-17129 is a Microsoft Excel remote code execution vulnerability documented in multiple sources linked to the December 2020 Excel security updates. The Nessus plugin groups this CVE with other Excel RCE flaws and notes that affected Office/Excel products were missing security updates, impl...

9.3CVSS7.8AI score0.03308EPSS
CVE
CVE
added 2021/01/12 7:42 p.m.151 views

CVE-2021-1713

CVE-2021-1713 corresponds to a Microsoft Excel remote code execution vulnerability affecting Office/Excel products. The connected documents confirm multiple Office-related CVEs in January 2021 (CVE-2021-1713 among others) with Microsoft security updates issued in that period. The provided sources...

7.8CVSS7.6AI score0.03101EPSS
CVE
CVE
added 2020/08/17 7:13 p.m.149 views

CVE-2020-1494

CVE-2020-1494 details (Excel RCE): Microsoft Excel contains a remote code execution vulnerability due to improper handling of in-memory objects. An attacker can run arbitrary code in the context of the current user, potentially taking control of the system if the user has administrative rights. E...

9.3CVSS9AI score0.04212EPSS
CVE
CVE
added 2021/05/11 7:11 p.m.149 views

CVE-2021-31178

CVE-2021-31178 is described in the connected documents as an information-disclosure vulnerability in Microsoft Office. The Nessus/OpenVAS entries reference this CVE as part of the Office May 2021 vulnerability set and note affected products (Office/Excel) and the need for security updates, listin...

5.5CVSS6.1AI score0.16012EPSS
CVE
CVE
added 2020/04/15 3:12 p.m.148 views

CVE-2020-0906

Microsoft Excel contains a remote code execution vulnerability (CVE-2020-0906) where the application fails to properly handle objects in memory, allowing code to run in the attacker’s context. The Nessus updates describe Excel-specific RCEs and note that Office products were missing updates as of...

9.3CVSS8.8AI score0.11261EPSS
CVE
CVE
added 2020/08/17 7:13 p.m.142 views

CVE-2020-1495

CVE-2020-1495 (Microsoft Excel) : A remote code execution via memory corruption in Excel occurs when the application fails to correctly handle objects in memory. An attacker who can lure a user to open a specially crafted Excel file (e.g., via email or a website) could execute arbitrary code in t...

9.3CVSS9AI score0.04212EPSS
CVE
CVE
added 2021/05/11 7:11 p.m.141 views

CVE-2021-31174

CVE-2021-31174 is a Microsoft Excel information-disclosure vulnerability. The CVSSv3.1 base score is 5.5 (MEDIUM) with LOCAL attack vector, LOW attack complexity, and HIGH confidentiality impact (I:N, C:H, A:N). Public references in the connected documents indicate this CVE is addressed by the Ex...

5.5CVSS6.1AI score0.02939EPSS
Total number of security vulnerabilities145