Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftOffice

938 matches found

CVE
CVEadded 2017/04/12 2:59 p.m.3619 views

CVE-2017-0199

Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code...

9.3CVSS8.3AI score0.94366EPSS
CVE
CVEadded 2017/11/15 3:29 a.m.2536 views

CVE-2017-11882

Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corrup...

9.3CVSS8.3AI score0.94384EPSS
CVE
CVEadded 2018/01/10 1:29 a.m.2249 views

CVE-2018-0802

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE is unique from CVE-2018-0797 a...

9.3CVSS8.5AI score0.94103EPSS
CVE
CVEadded 2023/03/14 5:15 p.m.1725 views

CVE-2023-23397

Microsoft Outlook Elevation of Privilege Vulnerability

9.8CVSS8.3AI score0.93606EPSS
CVE
CVEadded 2012/04/10 9:55 p.m.1632 views

CVE-2012-0158

The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2; BizTalk Server 20...

9.3CVSS7.8AI score0.94314EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.1298 views

CVE-2017-8570

Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0243.

9.3CVSS8AI score0.94247EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.1266 views

CVE-2021-42292

Microsoft Excel Security Feature Bypass Vulnerability

7.8CVSS7.6AI score0.17906EPSS
CVE
CVEadded 2010/11/10 3:0 a.m.1250 views

CVE-2010-3333

Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2008 for Mac, Office for Mac 2011, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via crafted RTF data, aka "RTF Stack Buffer Overflow...

9.3CVSS8.1AI score0.93964EPSS
CVE
CVEadded 2018/01/10 1:29 a.m.1242 views

CVE-2018-0798

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability".

9.3CVSS8.8AI score0.9418EPSS
CVE
CVEadded 2012/08/15 1:55 a.m.1184 views

CVE-2012-1856

The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office 2003 SP3, Office 2003 Web Components SP3, Office 2007 SP2 and SP3, Office 2010 SP1, SQL Server 2000 SP4, SQL Server 2005 SP4, SQL Server 2008 SP2, SP3, R2, R2 SP1, and R2 SP2, Commerce Server 2002 SP4, Commerce ...

9.3CVSS7.9AI score0.91953EPSS
CVE
CVEadded 2015/04/14 8:59 p.m.1155 views

CVE-2015-1641

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2013 SP1 allow remote attackers to execute arbitra...

9.3CVSS9.4AI score0.9353EPSS
CVE
CVEadded 2023/06/17 1:15 a.m.1142 views

CVE-2023-28295

Microsoft Publisher Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00461EPSS
CVE
CVEadded 2019/01/08 9:29 p.m.1134 views

CVE-2019-0585

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft SharePoint, Microsof...

9.3CVSS8.3AI score0.32912EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.1066 views

CVE-2017-0262

Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0261 and CVE-2017-0281.

9.3CVSS8AI score0.92255EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.1063 views

CVE-2021-38646

Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability

7.8CVSS7.5AI score0.66345EPSS
CVE
CVEadded 2013/11/06 3:55 p.m.1056 views

CVE-2013-3906

GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Lync 2010, 2010 Attendee, 2013, and Basic 2013 allows remote attackers to execute arbitrary code via a crafted TIFF image, as demonstrated by an image in a Wo...

9.3CVSS9.4AI score0.92746EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.1054 views

CVE-2017-0261

Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0262 and CVE-2017-0281.

9.3CVSS8AI score0.92255EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.1044 views

CVE-2021-27059

Microsoft Office Remote Code Execution Vulnerability

8.5CVSS7.7AI score0.01615EPSS
CVE
CVEadded 2013/06/12 3:29 a.m.1041 views

CVE-2013-1331

Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka "Office Buffer Overflow Vulnerability."

9.3CVSS7.8AI score0.86654EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.1039 views

CVE-2019-1297

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

9.3CVSS8.8AI score0.56776EPSS
CVE
CVEadded 2019/01/08 9:29 p.m.1025 views

CVE-2019-0541

A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Interne...

9.3CVSS7.9AI score0.84144EPSS
CVE
CVEadded 2014/03/25 1:24 p.m.997 views

CVE-2014-1761

Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac 2011; Word Automation Services on SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attackers ...

9.3CVSS9.3AI score0.92827EPSS
CVE
CVEadded 2006/05/20 12:2 a.m.967 views

CVE-2006-2492

Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a malformed object pointer, as originally reported by ISC on 20060519 for a zero-day attack.

8.8CVSS7.4AI score0.78682EPSS
CVE
CVEadded 2015/06/10 1:59 a.m.962 views

CVE-2015-1770

Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Uninitialized Memory Use Vulnerability."

9.3CVSS7.5AI score0.73204EPSS
CVE
CVEadded 2009/11/11 7:30 p.m.951 views

CVE-2009-3129

Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows re...

9.3CVSS7.5AI score0.8993EPSS
CVE
CVEadded 2009/06/10 6:0 p.m.947 views

CVE-2009-0563

Stack-based buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; Microsoft Office Word Viewer 2003 SP3; Microsoft Office Word Viewer; and Microsoft Office Compatibility Pack for Word, Excel...

9.3CVSS8.1AI score0.77896EPSS
CVE
CVEadded 2009/06/10 6:30 p.m.940 views

CVE-2009-0557

Excel in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3, and Office 2004 and 2008 for Mac; Excel in 2007 Microsoft Office System SP1 and SP2; Open XML File Format Converter for Mac; Microsoft Office Excel Viewer 2003 SP3; Microsoft Office Excel Viewer; and Microsoft Office Compatibility ...

9.3CVSS7.5AI score0.83015EPSS
CVE
CVEadded 2015/07/14 9:59 p.m.916 views

CVE-2015-2424

Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1, and PowerPoint 2013 RT SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Microsoft Office Mem...

9.3CVSS9.3AI score0.76606EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.910 views

CVE-2015-2545

Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted EPS image, aka "Microsoft Office Malformed EPS File Vulnerability."

9.3CVSS7.4AI score0.93252EPSS
CVE
CVEadded 2016/10/14 2:59 a.m.906 views

CVE-2016-7193

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 201...

9.3CVSS7.8AI score0.78411EPSS
CVE
CVEadded 2015/08/15 12:59 a.m.903 views

CVE-2015-1642

Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."

9.3CVSS7.5AI score0.64711EPSS
CVE
CVEadded 2024/02/13 6:16 p.m.898 views

CVE-2024-21413

Microsoft Outlook Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.9377EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.797 views

CVE-2023-21823

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.03155EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.757 views

CVE-2023-36761

Microsoft Word Information Disclosure Vulnerability

6.5CVSS6AI score0.0371EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.587 views

CVE-2023-35311

Microsoft Outlook Security Feature Bypass Vulnerability

8.8CVSS7.9AI score0.01272EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.576 views

CVE-2023-21716

Microsoft Word Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.91148EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.537 views

CVE-2023-36762

Microsoft Word Remote Code Execution Vulnerability

7.3CVSS7.3AI score0.00128EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.498 views

CVE-2023-36767

Microsoft Office Security Feature Bypass Vulnerability

4.3CVSS4.8AI score0.00327EPSS
CVE
CVEadded 2024/08/12 1:38 p.m.498 views

CVE-2024-38200

Microsoft Office Spoofing Vulnerability

9.1CVSS7.5AI score0.5572EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.486 views

CVE-2023-36763

Microsoft Outlook Information Disclosure Vulnerability

7.5CVSS7.2AI score0.0128EPSS
CVE
CVEadded 2018/12/12 12:29 a.m.482 views

CVE-2018-8628

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft PowerPoint, Microsoft SharePoint, ...

9.3CVSS6.1AI score0.35597EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.450 views

CVE-2023-36766

Microsoft Excel Information Disclosure Vulnerability

7.8CVSS6AI score0.00334EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.444 views

CVE-2023-36765

Microsoft Office Elevation of Privilege Vulnerability

9.8CVSS8.6AI score0.00102EPSS
CVE
CVEadded 2023/09/12 5:15 p.m.432 views

CVE-2023-41764

Microsoft Office Spoofing Vulnerability

5.5CVSS5.6AI score0.001EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.376 views

CVE-2018-1028

A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server.

9.3CVSS8.3AI score0.29608EPSS
CVE
CVEadded 2024/02/13 6:15 p.m.349 views

CVE-2024-20673

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00408EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.323 views

CVE-2024-38226

Microsoft Publisher Security Feature Bypass Vulnerability

7.3CVSS8.2AI score0.03751EPSS
CVE
CVEadded 2023/06/17 1:15 a.m.306 views

CVE-2023-28287

Microsoft Publisher Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.00623EPSS
CVE
CVEadded 2024/12/12 2:0 a.m.297 views

CVE-2024-43600

Microsoft Office Elevation of Privilege Vulnerability

7.8CVSS7AI score0.0037EPSS
CVE
CVEadded 2024/02/13 6:15 p.m.270 views

CVE-2024-21378

Microsoft Outlook Remote Code Execution Vulnerability

8.8CVSS7.8AI score0.15554EPSS
Total number of security vulnerabilities938