Access
by Microsoft
CVEs (33)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-62552 | 0.00 | — | 0.01 | Dec 9, 2025 | Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-59232 | 0.00 | — | 0.00 | Oct 14, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | |||
| CVE-2025-59235 | 0.00 | — | 0.01 | Oct 14, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | |||
| CVE-2025-26642 | 0.00 | — | 0.01 | Apr 8, 2025 | Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-26630 | 0.00 | — | 0.01 | Mar 11, 2025 | Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-21186 | 0.00 | — | 0.01 | Jan 14, 2025 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2025-21395 | 0.00 | — | 0.01 | Jan 14, 2025 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2025-21366 | 0.00 | — | 0.01 | Jan 14, 2025 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2024-49142 | 0.00 | — | 0.01 | Dec 10, 2024 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2021-41368 | 0.00 | — | 0.04 | Nov 10, 2021 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2019-1463 | 0.00 | — | 0.02 | Dec 10, 2019 | An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1400. | |||
| CVE-2019-1400 | 0.00 | — | 0.02 | Dec 10, 2019 | An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1463. | |||
| CVE-1999-0364 | 0.00 | — | 0.05 | Jan 1, 1999 | Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data. |
- CVE-2025-62552Dec 9, 2025risk 0.00cvss —epss 0.01
Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally.
- CVE-2025-59232Oct 14, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
- CVE-2025-59235Oct 14, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
- CVE-2025-26642Apr 8, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-26630Mar 11, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.
- CVE-2025-21186Jan 14, 2025risk 0.00cvss —epss 0.01
Microsoft Access Remote Code Execution Vulnerability
- CVE-2025-21395Jan 14, 2025risk 0.00cvss —epss 0.01
Microsoft Access Remote Code Execution Vulnerability
- CVE-2025-21366Jan 14, 2025risk 0.00cvss —epss 0.01
Microsoft Access Remote Code Execution Vulnerability
- CVE-2024-49142Dec 10, 2024risk 0.00cvss —epss 0.01
Microsoft Access Remote Code Execution Vulnerability
- CVE-2021-41368Nov 10, 2021risk 0.00cvss —epss 0.04
Microsoft Access Remote Code Execution Vulnerability
- CVE-2019-1463Dec 10, 2019risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1400.
- CVE-2019-1400Dec 10, 2019risk 0.00cvss —epss 0.02
An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1463.
- CVE-1999-0364Jan 1, 1999risk 0.00cvss —epss 0.05
Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.
Page 2 of 2