Office Security Vulnerabilities and Issues — Office CVE List

Lucene search

MicrosoftOffice

3 matches found

CVE•added 2016/09/14 10:59 a.m.•89 views

CVE-2016-3357

Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Word for Mac 2011, Word 2016 for Mac, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, SharePoint Server 2013 SP1, Excel Automation Services on SharePoint Server 2013 SP1, Word Automati...

9.3CVSS7.6AI score0.29428EPSS

CVE•added 2016/09/14 10:59 a.m.•61 views

CVE-2016-0141

The Visual Basic macros in Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 export a certificate-store private key during a document-save operation, which allows attackers to obtain sensitive information via unspecified vectors, aka "Microsoft Information Disclosure Vulnerability."

6.5CVSS6.1AI score0.0771EPSS

CVE•added 2016/09/14 10:59 a.m.•49 views

CVE-2016-0137

The Click-to-Run (C2R) implementation in Microsoft Office 2013 SP1 and 2016 allows local users to bypass the ASLR protection mechanism via a crafted application, aka "Microsoft APP-V ASLR Bypass."

4.3CVSS4.9AI score0.06542EPSS