Microsoft Project

CVEs (6)

CVE	Vendor / Product	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-38189	Microsoft Office	0.15	—	0.44	KEV	Aug 13, 2024	Microsoft Project Remote Code Execution Vulnerability
CVE-2020-0760	Microsoft Microsoft Account	0.03	—	0.33		Apr 15, 2020	A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.
CVE-2020-1322	Microsoft Project	0.02	—	0.25		Jun 9, 2020	An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.
CVE-2018-8575	Microsoft Office	0.02	—	0.29		Nov 14, 2018	A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.
CVE-2020-1449	Microsoft Project	0.01	—	0.15		Jul 14, 2020	A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file, aka 'Microsoft Project Remote Code Execution Vulnerability'.
CVE-2019-1264	Microsoft Office Visio	0.01	—	0.08		Sep 11, 2019	A security feature bypass vulnerability exists when Microsoft Office improperly handles input, aka 'Microsoft Office Security Feature Bypass Vulnerability'.

CVE-2024-38189KEVAug 13, 2024
Microsoft
Office
risk 0.15cvss —epss 0.44
Microsoft Project Remote Code Execution Vulnerability
CVE-2020-0760Apr 15, 2020
Microsoft
Microsoft Account
risk 0.03cvss —epss 0.33
A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.
CVE-2020-1322Jun 9, 2020
Microsoft
Project
risk 0.02cvss —epss 0.25
An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.
CVE-2018-8575Nov 14, 2018
Microsoft
Office
risk 0.02cvss —epss 0.29
A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.
CVE-2020-1449Jul 14, 2020
Microsoft
Project
risk 0.01cvss —epss 0.15
A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file, aka 'Microsoft Project Remote Code Execution Vulnerability'.
CVE-2019-1264Sep 11, 2019
Microsoft
Office Visio
risk 0.01cvss —epss 0.08
A security feature bypass vulnerability exists when Microsoft Office improperly handles input, aka 'Microsoft Office Security Feature Bypass Vulnerability'.