Office@2013 Security Vulnerabilities and Issues — Page 3 of Office@2013 CVE List

Lucene search

MicrosoftOffice2013

178 matches found

CVE•added 2023/07/11 6:15 p.m.•94 views

CVE-2023-33152

Microsoft ActiveX Remote Code Execution Vulnerability

7.8CVSS7.3AI score0.00957EPSS

CVE•added 2021/03/11 4:15 p.m.•93 views

CVE-2021-27057

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.04203EPSS

CVE•added 2017/06/15 1:29 a.m.•92 views

CVE-2017-8510

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CVE-2017-8506.

9.3CVSS7.2AI score0.36403EPSS

CVE•added 2020/08/17 7:15 p.m.•92 views

CVE-2020-1497

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data.To exploit the vulnerability, an attacker could craft a special docume...

5.5CVSS6.3AI score0.25763EPSS

CVE•added 2019/04/09 9:29 p.m.•91 views

CVE-2019-0801

A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or PowerPoint file that was also downloaded.The update addre...

7.8CVSS7.7AI score0.23271EPSS

CVE•added 2019/05/16 7:29 p.m.•91 views

CVE-2019-0946

A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0945, CVE-2019-0947.

9.3CVSS7.9AI score0.24224EPSS

CVE•added 2019/03/06 12:0 a.m.•90 views

CVE-2019-0673

9.3CVSS7.9AI score0.31336EPSS

CVE•added 2019/05/16 7:29 p.m.•89 views

CVE-2019-0945

9.3CVSS7.9AI score0.24224EPSS

CVE•added 2020/11/11 7:15 a.m.•89 views

CVE-2020-17064

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.06172EPSS

CVE•added 2023/07/11 6:15 p.m.•89 views

CVE-2023-33149

Microsoft Office Graphics Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00766EPSS

CVE•added 2016/09/14 10:59 a.m.•88 views

CVE-2016-3357

Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Word for Mac 2011, Word 2016 for Mac, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, SharePoint Server 2013 SP1, Excel Automation Services on SharePoint Server 2013 SP1, Word Automati...

9.3CVSS7.6AI score0.29428EPSS

CVE•added 2018/05/09 7:29 p.m.•88 views

CVE-2018-8147

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8148, CVE-2018-8162.

9.3CVSS7.9AI score0.24873EPSS

CVE•added 2018/10/10 1:29 p.m.•88 views

CVE-2018-8502

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in Protected View, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel.

9.3CVSS8.8AI score0.20562EPSS

CVE•added 2018/12/12 12:29 a.m.•88 views

CVE-2018-8587

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook.

9.3CVSS6.1AI score0.46569EPSS

CVE•added 2019/03/06 12:0 a.m.•88 views

CVE-2019-0671

9.3CVSS7.9AI score0.31336EPSS

CVE•added 2019/04/09 9:29 p.m.•87 views

CVE-2019-0824

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2019/04/09 9:29 p.m.•86 views

CVE-2019-0827

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2016/01/13 5:59 a.m.•85 views

CVE-2016-0012

Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP1, Visio 2013 SP1, Word 2013 SP1, Excel 2013 RT SP1, PowerPoint 2013...

4.3CVSS5.1AI score0.13313EPSS

CVE•added 2019/12/10 10:15 p.m.•83 views

CVE-2019-1463

An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1400.

5.5CVSS5AI score0.01654EPSS

CVE•added 2021/03/11 4:15 p.m.•83 views

CVE-2021-24108

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00582EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-33153

Microsoft Outlook Remote Code Execution Vulnerability

8.8CVSS7.6AI score0.00421EPSS

CVE•added 2017/06/15 1:29 a.m.•82 views

CVE-2017-8512

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8510, CVE-2017-8511, CVE-2017-0260, and CVE-2017-8506.

9.3CVSS7.2AI score0.36403EPSS

CVE•added 2017/09/13 1:29 a.m.•82 views

CVE-2017-8744

A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, and Microsoft Excel 2016 when they fail to properly handle objects in memory, aka "M...

9.3CVSS7.7AI score0.6165EPSS

CVE•added 2019/03/06 12:0 a.m.•82 views

CVE-2019-0674

9.3CVSS7.9AI score0.31336EPSS

CVE•added 2020/10/16 11:15 p.m.•82 views

CVE-2020-16928

An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.To exploit this vulnerability, an attacker would need to convince a user to open a speci...

7.8CVSS7.4AI score0.08331EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-33162

Microsoft Excel Information Disclosure Vulnerability

5.5CVSS5.4AI score0.00499EPSS

CVE•added 2016/05/11 1:59 a.m.•81 views

CVE-2016-0126

Microsoft Office 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

9.3CVSS7.9AI score0.31597EPSS

CVE•added 2019/04/09 9:29 p.m.•81 views

CVE-2019-0826

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2021/03/11 4:15 p.m.•80 views

CVE-2021-27054

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.6AI score0.0356EPSS

CVE•added 2016/08/09 9:59 p.m.•79 views

CVE-2016-3318

Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allow remote attackers to execute arbitrary code via a crafted file, aka "Graphics Component Memory Corruption Vulnerability."

9.3CVSS7.8AI score0.31597EPSS

CVE•added 2021/12/15 3:15 p.m.•79 views

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability

6.5CVSS6.6AI score0.01728EPSS

CVE•added 2018/01/10 1:29 a.m.•78 views

CVE-2018-0805

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is u...

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2018/05/09 7:29 p.m.•77 views

CVE-2018-8157

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-8158, CVE-2018-8161.

9.3CVSS7.7AI score0.24873EPSS

CVE•added 2018/01/22 11:29 p.m.•76 views

CVE-2018-0862

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2018/05/09 7:29 p.m.•76 views

CVE-2018-8158

9.3CVSS7.7AI score0.24873EPSS

CVE•added 2021/12/15 3:15 p.m.•76 views

CVE-2021-42295

Visual Basic for Applications Information Disclosure Vulnerability

5.5CVSS5.5AI score0.03195EPSS

CVE•added 2021/12/15 3:15 p.m.•76 views

CVE-2021-43255

Microsoft Office Trust Center Spoofing Vulnerability

5.5CVSS5.6AI score0.01249EPSS

CVE•added 2018/01/10 1:29 a.m.•75 views

CVE-2018-0801

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Remote Code Execution Vulnerability".

9.3CVSS8.8AI score0.36911EPSS

CVE•added 2015/05/13 10:59 a.m.•74 views

CVE-2015-1682

Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1, Office 2013 RT SP1, Excel 2013 RT SP1, PowerPoint 2013 RT SP1, Word 2013 RT SP1, Office for Mac 2011, Excel for Mac 2011, PowerPoint for Mac 2011, Word...

9.3CVSS7.4AI score0.28203EPSS

CVE•added 2018/05/09 7:29 p.m.•74 views

CVE-2018-8161

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Word, Word, Microsoft Office, Microsoft SharePoint. This CVE ID is unique from C...

9.3CVSS7.7AI score0.24873EPSS

CVE•added 2018/01/10 1:29 a.m.•73 views

CVE-2018-0806

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2016/11/10 6:59 a.m.•72 views

CVE-2016-7245

Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, and Office 2016 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

9.3CVSS7.6AI score0.31597EPSS

CVE•added 2018/01/10 1:29 a.m.•72 views

CVE-2018-0807

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2018/05/09 7:29 p.m.•72 views

CVE-2018-8148

9.3CVSS7.9AI score0.24873EPSS

CVE•added 2018/01/22 11:29 p.m.•71 views

CVE-2018-0845

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2018/01/22 11:29 p.m.•71 views

CVE-2018-0849

9.3CVSS8.3AI score0.36911EPSS

CVE•added 2015/03/11 10:59 a.m.•70 views

CVE-2015-0085

Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold and SP1, Word 2013 Gold and SP1, Office 2013 RT Gold and SP1, Word 2013 RT Gold and SP1, Excel Viewer,...

9.3CVSS7.4AI score0.34099EPSS

CVE•added 2015/08/15 12:59 a.m.•70 views

CVE-2015-2470

Integer underflow in Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office for Mac 2011, and Word Viewer allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Integer Underflow Vulnerability."

9.3CVSS7.5AI score0.64267EPSS

CVE•added 2018/06/14 12:29 p.m.•70 views

CVE-2018-8248

9.3CVSS7.7AI score0.47358EPSS

CVE•added 2018/10/10 1:29 p.m.•70 views

CVE-2018-8504

A remote code execution vulnerability exists in Microsoft Word software when the software fails to properly handle objects in Protected View, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Office 365 ProPlus, Microsoft Office, Microsoft Word.

9.3CVSS8.8AI score0.17486EPSS

Total number of security vulnerabilities178