Office@2019 Security Vulnerabilities and Issues — Page 7 of Office@2019 CVE List

Lucene search

MicrosoftOffice2019

421 matches found

CVE•added 2019/04/09 9:29 p.m.•86 views

CVE-2019-0827

A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0823, CVE-2019-0824, CVE-2019-0825, CVE-...

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2021/02/25 11:15 p.m.•86 views

CVE-2021-24070

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.6AI score0.02597EPSS

CVE•added 2023/07/11 6:15 p.m.•86 views

CVE-2023-33161

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00766EPSS

CVE•added 2025/01/14 6:16 p.m.•86 views

CVE-2025-21366

Microsoft Access Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00393EPSS

CVE•added 2025/04/08 6:16 p.m.•86 views

CVE-2025-27749

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00944EPSS

CVE•added 2020/11/11 7:15 a.m.•85 views

CVE-2020-17067

Microsoft Excel Security Feature Bypass Vulnerability

7.8CVSS7.4AI score0.09312EPSS

CVE•added 2021/09/15 12:15 p.m.•85 views

CVE-2021-38653

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.6AI score0.08194EPSS

CVE•added 2023/10/10 6:15 p.m.•85 views

CVE-2023-36565

Microsoft Office Graphics Elevation of Privilege Vulnerability

7CVSS7AI score0.00094EPSS

CVE•added 2025/03/11 5:16 p.m.•85 views

CVE-2025-24081

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00139EPSS

CVE•added 2025/04/08 6:15 p.m.•85 views

CVE-2025-26642

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.4AI score0.00177EPSS

CVE•added 2022/10/11 7:15 p.m.•84 views

CVE-2022-38049

Microsoft Office Graphics Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.02786EPSS

CVE•added 2023/07/11 6:15 p.m.•84 views

CVE-2023-33158

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00374EPSS

CVE•added 2025/04/08 6:16 p.m.•84 views

CVE-2025-27752

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00944EPSS

CVE•added 2019/03/06 12:0 a.m.•83 views

CVE-2019-0674

9.3CVSS7.9AI score0.31336EPSS

CVE•added 2019/12/10 10:15 p.m.•83 views

CVE-2019-1463

An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1400.

5.5CVSS5AI score0.01654EPSS

CVE•added 2021/03/11 4:15 p.m.•83 views

CVE-2021-24108

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.0095EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-33153

Microsoft Outlook Remote Code Execution Vulnerability

8.8CVSS7.6AI score0.00421EPSS

CVE•added 2025/04/08 6:16 p.m.•83 views

CVE-2025-27748

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00944EPSS

CVE•added 2018/11/14 1:29 a.m.•82 views

CVE-2018-8522

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8524,...

9.3CVSS8.3AI score0.17365EPSS

CVE•added 2018/11/14 1:29 a.m.•82 views

CVE-2018-8573

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8539.

9.3CVSS7.9AI score0.16422EPSS

CVE•added 2019/04/09 9:29 p.m.•82 views

CVE-2019-0825

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2019/11/12 7:15 p.m.•82 views

CVE-2019-1449

A security feature bypass vulnerability exists in the way that Office Click-to-Run (C2R) components handle a specially crafted file, which could lead to a standard user, any AppContainer sandbox, and Office LPAC Protected View to escalate privileges to SYSTEM.To exploit this bug, an attacker would ...

10CVSS9.3AI score0.0625EPSS

CVE•added 2020/06/09 8:15 p.m.•82 views

CVE-2020-1321

A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'.

8.8CVSS8.6AI score0.39264EPSS

CVE•added 2020/10/16 11:15 p.m.•82 views

CVE-2020-16928

An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges.To exploit this vulnerability, an attacker would need to convince a user to open a speci...

7.8CVSS7.4AI score0.08331EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-33162

Microsoft Excel Information Disclosure Vulnerability

5.5CVSS5.4AI score0.00768EPSS

CVE•added 2024/11/12 6:15 p.m.•82 views

CVE-2024-49030

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00513EPSS

CVE•added 2019/04/09 9:29 p.m.•81 views

CVE-2019-0826

7.8CVSS7.8AI score0.19127EPSS

CVE•added 2020/10/16 11:15 p.m.•81 views

CVE-2020-16934

7.8CVSS6.7AI score0.0284EPSS

CVE•added 2024/09/10 5:15 p.m.•81 views

CVE-2024-43465

Microsoft Excel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00634EPSS

CVE•added 2025/06/10 5:23 p.m.•81 views

CVE-2025-47162

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.6AI score0.00066EPSS

CVE•added 2021/03/11 4:15 p.m.•80 views

CVE-2021-27054

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.6AI score0.0356EPSS

CVE•added 2021/03/11 4:15 p.m.•80 views

CVE-2021-27055

Microsoft Visio Security Feature Bypass Vulnerability

7CVSS6.6AI score0.00411EPSS

CVE•added 2021/09/15 12:15 p.m.•80 views

CVE-2021-38654

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.6AI score0.08194EPSS

CVE•added 2022/12/13 7:15 p.m.•80 views

CVE-2022-44694

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00303EPSS

CVE•added 2022/12/13 7:15 p.m.•80 views

CVE-2022-44696

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00392EPSS

CVE•added 2022/12/13 7:15 p.m.•80 views

CVE-2022-44713

Microsoft Outlook for Mac Spoofing Vulnerability

7.5CVSS7.5AI score0.02318EPSS

CVE•added 2024/10/08 6:15 p.m.•80 views

CVE-2024-43505

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00883EPSS

CVE•added 2024/11/12 6:15 p.m.•80 views

CVE-2024-49028

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00513EPSS

CVE•added 2024/12/12 2:4 a.m.•80 views

CVE-2024-49065

Microsoft Office Remote Code Execution Vulnerability

5.5CVSS5.9AI score0.00191EPSS

CVE•added 2018/11/14 1:29 a.m.•79 views

CVE-2018-8524

9.3CVSS8.3AI score0.17365EPSS

CVE•added 2021/12/15 3:15 p.m.•79 views

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability

6.5CVSS6.6AI score0.02692EPSS

CVE•added 2025/06/10 5:23 p.m.•79 views

CVE-2025-47175

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00583EPSS

Web

CVE•added 2020/11/11 7:15 a.m.•78 views

CVE-2020-17063

Microsoft Office Online Spoofing Vulnerability

6.8CVSS6.5AI score0.01601EPSS

CVE•added 2024/12/12 2:4 a.m.•78 views

CVE-2024-49059

Microsoft Office Elevation of Privilege Vulnerability

7CVSS6.9AI score0.00106EPSS

CVE•added 2025/02/11 6:15 p.m.•77 views

CVE-2025-21392

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.0015EPSS

CVE•added 2019/08/14 9:15 p.m.•76 views

CVE-2019-1199

A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative ...

9.3CVSS7.9AI score0.08996EPSS

CVE•added 2021/12/15 3:15 p.m.•76 views

CVE-2021-42295

Visual Basic for Applications Information Disclosure Vulnerability

5.5CVSS5.5AI score0.03195EPSS

CVE•added 2021/12/15 3:15 p.m.•76 views

CVE-2021-43255

Microsoft Office Trust Center Spoofing Vulnerability

5.5CVSS5.6AI score0.01249EPSS

CVE•added 2025/04/08 6:16 p.m.•76 views

CVE-2025-29816

Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network.