Office Web Apps Security Vulnerabilities and Issues — Office Web Apps CVE List

Lucene search

MicrosoftOffice Web Apps

4 matches found

CVE•added 2013/10/09 2:53 p.m.•130 views

CVE-2013-3895

Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability."

6.8CVSS6.7AI score0.16358EPSS

CVE•added 2016/11/10 6:59 a.m.•77 views

CVE-2016-7233

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2013 SP1, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or ...

6.5CVSS6.3AI score0.13703EPSS

CVE•added 2020/07/14 11:15 p.m.•70 views

CVE-2020-1442

A spoofing vulnerability exists when an Office Web Apps server does not properly sanitize a specially crafted request, aka 'Office Web Apps XSS Vulnerability'.

6.1CVSS6.2AI score0.00607EPSS

CVE•added 2013/12/11 12:55 a.m.•61 views

CVE-2013-5059

Microsoft SharePoint Server 2010 SP1 and SP2 and 2013, and Office Web Apps 2013, allows remote attackers to execute arbitrary code via crafted page content, aka "SharePoint Page Content Vulnerabilities."

6.8CVSS7.6AI score0.11014EPSS