Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Microsoft Subscribe
Filtered by product Office
Total 947 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-36765 1 Microsoft 1 Office 2025-02-28 N/A 9.8 CRITICAL
Microsoft Office Elevation of Privilege Vulnerability
CVE-2023-36569 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2025-02-28 N/A N/A
Microsoft Office Elevation of Privilege Vulnerability
CVE-2021-31949 1 Microsoft 3 365 Apps, Office, Outlook 2025-02-28 6.8 MEDIUM N/A
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-33131 1 Microsoft 4 Office, Office Long Term Servicing Channel, Outlook and 1 more 2025-02-28 N/A N/A
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-33148 1 Microsoft 2 365 Apps, Office 2025-02-28 N/A N/A
Microsoft Office Elevation of Privilege Vulnerability
CVE-2023-23398 1 Microsoft 3 365 Apps, Excel, Office 2025-02-28 N/A 7.1 HIGH
Microsoft Excel Spoofing Vulnerability
CVE-2022-41061 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2025-02-28 N/A N/A
Microsoft Word Remote Code Execution Vulnerability
CVE-2023-33150 1 Microsoft 3 365 Apps, Office, Word 2025-02-28 N/A N/A
Microsoft Office Security Feature Bypass Vulnerability
CVE-2023-29333 1 Microsoft 2 365 Apps, Office 2025-02-28 N/A N/A
Microsoft Access Denial of Service Vulnerability
CVE-2023-35311 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2025-02-24 N/A 8.8 HIGH
Microsoft Outlook Security Feature Bypass Vulnerability
CVE-2017-0261 1 Microsoft 1 Office 2025-02-11 9.3 HIGH 7.8 HIGH
Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0262 and CVE-2017-0281.
CVE-2017-0262 1 Microsoft 1 Office 2025-02-11 9.3 HIGH 7.8 HIGH
Microsoft Office 2010 SP2, Office 2013 SP1, and Office 2016 allow a remote code execution vulnerability when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0261 and CVE-2017-0281.
CVE-2017-0199 2 Microsoft, Philips 6 Office, Windows 7, Windows Server 2008 and 3 more 2025-02-11 9.3 HIGH 7.8 HIGH
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."
CVE-2025-21402 1 Microsoft 2 Office, Onenote 2025-01-27 N/A 7.8 HIGH
Microsoft Office OneNote Remote Code Execution Vulnerability
CVE-2023-36761 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2025-01-23 N/A 6.5 MEDIUM
Microsoft Word Information Disclosure Vulnerability
CVE-2025-21338 1 Microsoft 16 Office, Windows 10 1507, Windows 10 1607 and 13 more 2025-01-21 N/A N/A
GDI+ Remote Code Execution Vulnerability
CVE-2025-21354 1 Microsoft 3 365 Apps, Office, Office Online Server 2025-01-21 N/A 7.8 HIGH
Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-21361 1 Microsoft 2 Office, Outlook 2025-01-17 N/A 7.8 HIGH
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2008-0081 1 Microsoft 3 Excel, Excel Viewer, Office 2025-01-17 9.3 HIGH 9.8 CRITICAL
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office 2004 for Mac allows user-assisted remote attackers to execute arbitrary code via crafted macros, aka "Macro Validation Vulnerability," a different vulnerability than CVE-2007-3490.
CVE-2024-49142 1 Microsoft 4 365 Apps, Access, Office and 1 more 2025-01-17 N/A 7.8 HIGH
Microsoft Access Remote Code Execution Vulnerability