Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Office
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 858 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-01-14 | CVE-2025-21366 | Microsoft Access Remote Code Execution Vulnerability | 365_apps, Access, Office | 7.8 | ||
| 2025-01-14 | CVE-2025-21395 | Microsoft Access Remote Code Execution Vulnerability | 365_apps, Access, Office | 7.8 | ||
| 2013-01-09 | CVE-2013-0006 | Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability." | Expression_web, Groove_server, Office, Office_compatibility_pack, Sharepoint_server, Windows_7, Windows_8, Windows_rt, Windows_server_2003, Windows_server_2008, Windows_server_2012, Windows_vista, Windows_xp, Word_viewer, Xml_core_services | N/A | ||
| 2013-07-10 | CVE-2013-3129 | Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT; GDI+ in Office 2003 SP3, 2007 SP3, and 2010 SP1; GDI+ in Visual Studio .NET 2003 SP1; and GDI+ in Lync 2010, 2010 Attendee, 2013, and Basic 2013 allow remote... | \.net_framework, Lync, Lync_basic, Office, Silverlight, Visual_studio_\.net, Windows_7, Windows_8, Windows_rt, Windows_server_2003, Windows_server_2008, Windows_server_2012, Windows_vista, Windows_xp | N/A | ||
| 2024-05-14 | CVE-2024-30042 | Microsoft Excel Remote Code Execution Vulnerability | 365_apps, Excel, Office, Office_long_term_servicing_channel, Office_online_server | N/A | ||
| 2024-12-12 | CVE-2024-49059 | Microsoft Office Elevation of Privilege Vulnerability | 365_apps, Office, Office_long_term_servicing_channel | 7.0 | ||
| 2024-12-12 | CVE-2024-43600 | Microsoft Office Elevation of Privilege Vulnerability | Office | N/A | ||
| 2024-12-12 | CVE-2024-49065 | Microsoft Office Remote Code Execution Vulnerability | 365_apps, Office, Office_long_term_servicing_channel, Sharepoint_server, Word | 5.5 | ||
| 2024-12-12 | CVE-2024-49069 | Microsoft Excel Remote Code Execution Vulnerability | 365_apps, Excel, Office, Office_long_term_servicing_channel | 7.8 | ||
| 2022-10-11 | CVE-2022-38001 | Microsoft Office Spoofing Vulnerability | 365_apps, Office, Office_long_term_servicing_channel | N/A |