Onenote Security Vulnerabilities and Issues — Onenote CVE List

Lucene search

MicrosoftOnenote

4 matches found

CVE•added 2025/04/08 6:16 p.m.•102 views

CVE-2025-29822

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

7.8CVSS7.1AI score0.00774EPSS

CVE•added 2025/01/14 6:16 p.m.•75 views

CVE-2025-21402

Microsoft Office OneNote Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00198EPSS

CVE•added 2024/12/18 11:15 p.m.•61 views

CVE-2024-41159

A library injection vulnerability exists in Microsoft OneNote 16.83 for macOS. A specially crafted library can leverage OneNote's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use o...

7.1CVSS6.9AI score0.00154EPSS

CVE•added 2008/07/07 11:41 p.m.•49 views

CVE-2008-3068

Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificate embedded in a (1) S/MIME e-mail message or (2) signed document, which allows remote attackers to o...

7.5CVSS6.7AI score0.10248EPSS