Lucene search

K

266 matches found

CVE
CVE
added 2018/05/09 7:29 p.m.77 views

CVE-2018-8157

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-8158, CVE-2018-8161.

9.3CVSS7.7AI score0.24873EPSS
CVE
CVE
added 2024/09/10 5:15 p.m.77 views

CVE-2024-38250

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00588EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.76 views

CVE-2021-42295

Visual Basic for Applications Information Disclosure Vulnerability

5.5CVSS5.5AI score0.03195EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.76 views

CVE-2021-43255

Microsoft Office Trust Center Spoofing Vulnerability

5.5CVSS5.6AI score0.01249EPSS
CVE
CVE
added 2025/02/11 6:15 p.m.76 views

CVE-2025-21392

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.0015EPSS
CVE
CVE
added 2025/04/08 6:16 p.m.76 views

CVE-2025-29816

Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network.

7.5CVSS7.1AI score0.00027EPSS
CVE
CVE
added 2018/11/14 1:29 a.m.75 views

CVE-2018-8558

An information disclosure vulnerability exists when Microsoft Outlook fails to respect "Default link type" settings configured via the SharePoint Online Admin Center, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is uniq...

6.5CVSS6.2AI score0.08197EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.75 views

CVE-2018-8598

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8627.

4.7CVSS5AI score0.19881EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.74 views

CVE-2018-8161

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Word, Word, Microsoft Office, Microsoft SharePoint. This CVE ID is unique from C...

9.3CVSS7.7AI score0.24873EPSS
CVE
CVE
added 2025/04/08 6:15 p.m.74 views

CVE-2025-26687

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

7.5CVSS7.5AI score0.0006EPSS
CVE
CVE
added 2018/10/10 1:29 p.m.73 views

CVE-2018-8427

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Micr...

5.5CVSS5.7AI score0.03904EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.73 views

CVE-2018-8636

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8...

9.3CVSS6.1AI score0.35597EPSS
CVE
CVE
added 2019/04/09 12:29 a.m.73 views

CVE-2019-0748

A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.

9.3CVSS7.8AI score0.24224EPSS
CVE
CVE
added 2025/06/10 5:23 p.m.73 views

CVE-2025-47162

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.6AI score0.00063EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.72 views

CVE-2018-0919

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft SharePoint Enterprise Server 2013 SP1, Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint...

4.3CVSS4.9AI score0.06725EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.72 views

CVE-2018-8148

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8147, CVE-2018-8162.

9.3CVSS7.9AI score0.24873EPSS
CVE
CVE
added 2018/11/14 1:29 a.m.72 views

CVE-2018-8576

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522,...

9.3CVSS8.3AI score0.17365EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.72 views

CVE-2018-8597

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8...

9.3CVSS6.1AI score0.35597EPSS
CVE
CVE
added 2025/03/11 5:16 p.m.72 views

CVE-2025-24080

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.6AI score0.00158EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.71 views

CVE-2018-8160

An information disclosure vulnerability exists in Outlook when a message is opened, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Word, Microsoft Office.

6.5CVSS6.1AI score0.19761EPSS
CVE
CVE
added 2025/04/08 6:16 p.m.71 views

CVE-2025-27745

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00742EPSS
CVE
CVE
added 2025/04/08 6:16 p.m.71 views

CVE-2025-27746

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00079EPSS
CVE
CVE
added 2018/06/14 12:29 p.m.70 views

CVE-2018-8248

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office.

9.3CVSS7.7AI score0.47358EPSS
CVE
CVE
added 2018/10/10 1:29 p.m.70 views

CVE-2018-8504

A remote code execution vulnerability exists in Microsoft Word software when the software fails to properly handle objects in Protected View, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Office 365 ProPlus, Microsoft Office, Microsoft Word.

9.3CVSS8.8AI score0.17486EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.69 views

CVE-2004-0848

Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.

7.5CVSS7.8AI score0.42122EPSS
CVE
CVE
added 2018/11/14 1:29 a.m.69 views

CVE-2018-8579

An information disclosure vulnerability exists when attaching files to Outlook messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8558.

6.5CVSS6.2AI score0.08197EPSS
CVE
CVE
added 2025/06/10 5:24 p.m.69 views

CVE-2025-47953

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00067EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.68 views

CVE-2018-0922

Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office Compatibility Pack SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft Office Word Viewer, Microsoft SharePoint Enterprise Server 2013...

9.3CVSS7.8AI score0.19242EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.68 views

CVE-2018-8430

A remote code execution vulnerability exists in Microsoft Word if a user opens a specially crafted PDF file, aka "Word PDF Remote Code Execution Vulnerability." This affects Microsoft Word, Microsoft Office.

9.3CVSS7.9AI score0.16169EPSS
CVE
CVE
added 2018/10/10 1:29 p.m.68 views

CVE-2018-8501

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in Protected View, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Office 365 ProPlus, PowerPoint Viewer, Microsoft Office, Microsoft PowerPo...

9.3CVSS8.8AI score0.17486EPSS
CVE
CVE
added 2023/12/12 6:15 p.m.68 views

CVE-2023-36009

Microsoft Word Information Disclosure Vulnerability

5.5CVSS5.4AI score0.00132EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.67 views

CVE-2018-1029

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-20...

9.3CVSS7.7AI score0.23487EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.67 views

CVE-2018-1030

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-1026.

9.3CVSS8.3AI score0.35235EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.67 views

CVE-2018-8375

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-20...

9.3CVSS7.8AI score0.15563EPSS
CVE
CVE
added 2025/03/11 5:16 p.m.67 views

CVE-2025-24057

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00302EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.65 views

CVE-2018-8162

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8147, CVE-2018-8148.

9.3CVSS7.9AI score0.24873EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.65 views

CVE-2018-8312

A remote code execution vulnerability exists when Microsoft Access fails to properly handle objects in memory, aka "Microsoft Access Remote Code Execution Vulnerability." This affects Microsoft Access, Microsoft Office.

9.3CVSS7.9AI score0.40206EPSS
CVE
CVE
added 2018/09/13 12:29 a.m.65 views

CVE-2018-8429

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel.

5.5CVSS5AI score0.22636EPSS
CVE
CVE
added 2005/08/19 4:0 a.m.64 views

CVE-2005-2127

Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, as originally demo...

7.5CVSS7.8AI score0.42713EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.64 views

CVE-2018-8281

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Microsoft Office, Microsoft Office Wo...

9.3CVSS7.9AI score0.44121EPSS
CVE
CVE
added 2025/05/13 5:16 p.m.64 views

CVE-2025-30386

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.8AI score0.00063EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.63 views

CVE-2018-1007

An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-0950.

5.3CVSS5.3AI score0.14964EPSS
CVE
CVE
added 2025/03/11 5:16 p.m.63 views

CVE-2025-24083

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.7AI score0.00158EPSS
CVE
CVE
added 2018/05/09 7:29 p.m.61 views

CVE-2018-8150

A security feature bypass vulnerability exists when the Microsoft Outlook attachment block filter does not properly handle attachments, aka "Microsoft Outlook Security Feature Bypass Vulnerability." This affects Microsoft Office.

6.5CVSS6.6AI score0.13239EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.61 views

CVE-2018-8382

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel.

5.5CVSS5.5AI score0.14043EPSS
CVE
CVE
added 2025/05/13 5:16 p.m.61 views

CVE-2025-30377

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.9AI score0.00066EPSS
CVE
CVE
added 2025/06/10 5:23 p.m.61 views

CVE-2025-47164

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00063EPSS
CVE
CVE
added 2018/04/12 1:29 a.m.60 views

CVE-2018-1026

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-1030.

9.3CVSS8.3AI score0.35235EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.60 views

CVE-2018-8310

A tampering vulnerability exists when Microsoft Outlook does not properly handle specific attachment types when rendering HTML emails, aka "Microsoft Office Tampering Vulnerability." This affects Microsoft Word, Microsoft Office.

7.5CVSS7.2AI score0.07474EPSS
CVE
CVE
added 2024/11/12 6:15 p.m.59 views

CVE-2024-49032

Microsoft Office Graphics Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00357EPSS
Total number of security vulnerabilities266