Office@- Security Vulnerabilities and Issues — Office@- CVE List

Lucene search

MicrosoftOffice-

14 matches found

CVE•added 2023/03/14 5:15 p.m.•155 views

CVE-2023-24910

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00208EPSS

CVE•added 2009/08/12 5:30 p.m.•104 views

CVE-2009-0562

The Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 SP1, and Office...

9.3CVSS7.5AI score0.65426EPSS

CVE•added 2002/10/04 4:0 a.m.•90 views

CVE-2002-0862

The (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs within the CryptoAPI for Microsoft products including Microsoft Windows 98 through XP, Office for Mac, Internet Explorer for Mac, and Outlook Express for Mac, do not properly verify the Basic Constrai...

6.8CVSS6.3AI score0.20154EPSS

CVE•added 2009/08/12 5:30 p.m.•87 views

CVE-2009-2496

Heap-based buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 200...

9.3CVSS8AI score0.61262EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-33158

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00374EPSS

CVE•added 2009/08/12 5:30 p.m.•79 views

CVE-2009-1534

Buffer overflow in the Office Web Components ActiveX Control in Microsoft Office XP SP3, Office 2000 Web Components SP3, Office XP Web Components SP3, BizTalk Server 2002, and Visual Studio .NET 2003 SP1 allows remote attackers to execute arbitrary code via crafted property values, aka "Office Web ...

9.3CVSS7.8AI score0.7543EPSS

CVE•added 2024/09/10 5:15 p.m.•77 views

CVE-2024-38250

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00588EPSS

CVE•added 2025/06/10 5:23 p.m.•73 views

CVE-2025-47162

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.6AI score0.00063EPSS

CVE•added 2025/06/10 5:24 p.m.•69 views

CVE-2025-47953

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00067EPSS

CVE•added 2025/06/10 5:23 p.m.•61 views

CVE-2025-47164

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00063EPSS

CVE•added 2025/07/08 5:15 p.m.•21 views

CVE-2025-49697

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.3AI score0.00042EPSS

CVE•added 2025/07/08 5:15 p.m.•18 views

CVE-2025-49696

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS6.8AI score0.00055EPSS

CVE•added 2025/07/08 5:15 p.m.•17 views

CVE-2025-49695

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.3AI score0.00055EPSS

CVE•added 2025/07/08 5:15 p.m.•14 views

CVE-2025-49702

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS6.9AI score0.00086EPSS