Office@2019 Security Vulnerabilities and Issues — Page 8 of Office@2019 CVE List

Lucene search

MicrosoftOffice2019

408 matches found

CVE•added 2018/10/10 1:29 p.m.•73 views

CVE-2018-8427

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Micr...

5.5CVSS5.7AI score0.03904EPSS

CVE•added 2025/03/11 5:16 p.m.•73 views

CVE-2025-24078

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7CVSS7.3AI score0.00151EPSS

CVE•added 2025/06/10 5:23 p.m.•73 views

CVE-2025-47162

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.6AI score0.00063EPSS

CVE•added 2018/11/14 1:29 a.m.•72 views

CVE-2018-8576

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522,...

9.3CVSS8.3AI score0.17365EPSS

CVE•added 2018/12/12 12:29 a.m.•72 views

CVE-2018-8597

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8...

9.3CVSS6.1AI score0.35597EPSS

CVE•added 2024/10/08 6:15 p.m.•72 views

CVE-2024-43616

Microsoft Office Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00599EPSS

CVE•added 2025/03/11 5:16 p.m.•72 views

CVE-2025-24080

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.6AI score0.00158EPSS

CVE•added 2025/03/11 5:16 p.m.•71 views

CVE-2025-24082

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.6AI score0.00158EPSS

CVE•added 2025/04/08 6:16 p.m.•71 views

CVE-2025-27745

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00742EPSS

CVE•added 2025/04/08 6:16 p.m.•71 views

CVE-2025-27746

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00079EPSS

CVE•added 2018/10/10 1:29 p.m.•70 views

CVE-2018-8504

A remote code execution vulnerability exists in Microsoft Word software when the software fails to properly handle objects in Protected View, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Office 365 ProPlus, Microsoft Office, Microsoft Word.

9.3CVSS8.8AI score0.17486EPSS

CVE•added 2020/09/11 5:15 p.m.•70 views

CVE-2020-16855

An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory. An attacker who successfully exploited the vulnerability could view out of bound memory.Exploitation of the vulnerab...

5.5CVSS5.3AI score0.15533EPSS

CVE•added 2025/03/11 5:16 p.m.•70 views

CVE-2025-24079

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00158EPSS

CVE•added 2025/06/10 5:23 p.m.•70 views

CVE-2025-47175

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00505EPSS

CVE•added 2018/11/14 1:29 a.m.•69 views

CVE-2018-8579

An information disclosure vulnerability exists when attaching files to Outlook messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8558.

6.5CVSS6.2AI score0.08197EPSS

CVE•added 2024/09/10 5:15 p.m.•69 views

CVE-2024-43463

Microsoft Office Visio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00971EPSS

CVE•added 2025/06/10 5:24 p.m.•69 views

CVE-2025-47953

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00067EPSS

CVE•added 2018/10/10 1:29 p.m.•68 views

CVE-2018-8501

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in Protected View, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Office 365 ProPlus, PowerPoint Viewer, Microsoft Office, Microsoft PowerPo...

9.3CVSS8.8AI score0.17486EPSS

CVE•added 2023/12/12 6:15 p.m.•68 views

CVE-2023-36009

Microsoft Word Information Disclosure Vulnerability

5.5CVSS5.4AI score0.00132EPSS

CVE•added 2025/02/11 6:15 p.m.•67 views

CVE-2025-21394

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00131EPSS

CVE•added 2025/03/11 5:16 p.m.•67 views

CVE-2025-24057

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00302EPSS

CVE•added 2022/10/11 7:15 p.m.•66 views

CVE-2022-38001

Microsoft Office Spoofing Vulnerability

6.5CVSS6.6AI score0.02309EPSS

CVE•added 2025/05/13 5:16 p.m.•65 views

CVE-2025-32704

Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

8.4CVSS7.5AI score0.00066EPSS

CVE•added 2025/05/13 5:16 p.m.•64 views

CVE-2025-30386

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.8AI score0.00063EPSS

CVE•added 2025/06/10 5:23 p.m.•64 views

CVE-2025-47165

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00355EPSS

CVE•added 2025/03/11 5:16 p.m.•63 views

CVE-2025-24083

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.7AI score0.00158EPSS

CVE•added 2025/02/11 6:15 p.m.•62 views

CVE-2025-21390

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00131EPSS

CVE•added 2025/03/11 5:16 p.m.•62 views

CVE-2025-24075

Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.9AI score0.00149EPSS

CVE•added 2024/11/12 6:15 p.m.•61 views

CVE-2024-49029

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00349EPSS

CVE•added 2025/05/13 5:16 p.m.•61 views

CVE-2025-30377

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.9AI score0.00066EPSS

CVE•added 2025/06/10 5:23 p.m.•61 views

CVE-2025-47164

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS8.8AI score0.00063EPSS

CVE•added 2024/11/12 6:15 p.m.•59 views

CVE-2024-49032

Microsoft Office Graphics Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00357EPSS

CVE•added 2025/02/11 6:15 p.m.•59 views

CVE-2025-21386

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00131EPSS

CVE•added 2025/06/10 5:23 p.m.•59 views

CVE-2025-47168

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00068EPSS

CVE•added 2025/02/11 6:15 p.m.•58 views

CVE-2025-21383

Microsoft Excel Information Disclosure Vulnerability

7.8CVSS7.5AI score0.00103EPSS

CVE•added 2024/11/12 6:15 p.m.•54 views

CVE-2024-49027

Microsoft Excel Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00357EPSS

CVE•added 2025/05/13 5:16 p.m.•52 views

CVE-2025-30383

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.5AI score0.00153EPSS

CVE•added 2025/06/10 5:23 p.m.•52 views

CVE-2025-47169

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.

7.8CVSS7.9AI score0.00068EPSS

CVE•added 2025/06/10 5:23 p.m.•52 views

CVE-2025-47173

Improper input validation in Microsoft Office allows an unauthorized attacker to execute code locally.

7.8CVSS7.7AI score0.00059EPSS

CVE•added 2025/05/13 5:15 p.m.•49 views

CVE-2025-29979

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8.1AI score0.00079EPSS

CVE•added 2025/05/13 5:15 p.m.•48 views

CVE-2025-30375

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.5AI score0.00153EPSS

CVE•added 2025/05/13 5:16 p.m.•48 views

CVE-2025-30376

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00079EPSS

CVE•added 2025/06/10 5:23 p.m.•48 views

CVE-2025-47171

Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally.

6.7CVSS6.6AI score0.01646EPSS

CVE•added 2025/05/13 5:16 p.m.•46 views

CVE-2025-30379

Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.5AI score0.00079EPSS

CVE•added 2025/05/13 5:15 p.m.•45 views

CVE-2025-29977

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS8.2AI score0.00079EPSS

CVE•added 2025/05/13 5:16 p.m.•44 views

CVE-2025-30381

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.6AI score0.00079EPSS

CVE•added 2025/07/08 5:15 p.m.•23 views

CVE-2025-49697

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.3AI score0.00057EPSS

CVE•added 2025/07/08 5:15 p.m.•22 views

CVE-2025-49711

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

7.8CVSS7.3AI score0.00062EPSS

CVE•added 2025/07/08 5:15 p.m.•20 views

CVE-2025-49696

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS6.8AI score0.00075EPSS

CVE•added 2025/07/08 5:15 p.m.•19 views

CVE-2025-49695

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

8.4CVSS7.3AI score0.00075EPSS

Total number of security vulnerabilities408