VYPR

Office

by Microsoft

CVEs (1,071)

  • CVE-2026-32184HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.02

    Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32164HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32153HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32090HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

  • CVE-2026-32089HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26134HigMar 10, 2026
    risk 0.51cvss 7.8epss 0.00

    Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.

  • CVE-2025-62199HigNov 11, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-59234HigOct 14, 2025
    risk 0.51cvss 7.8epss 0.01

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-59227HigOct 14, 2025
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-53732HigAug 12, 2025
    risk 0.51cvss 7.8epss 0.00

    Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-49702HigJul 8, 2025
    risk 0.51cvss 7.8epss 0.01

    Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

  • CVE-2025-30388HigMay 13, 2025
    risk 0.51cvss 7.8epss 0.03

    Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

  • CVE-2025-21402HigJan 14, 2025
    risk 0.51cvss 7.8epss 0.01

    Microsoft Office OneNote Remote Code Execution Vulnerability

  • CVE-2025-21361HigJan 14, 2025
    risk 0.51cvss 7.8epss 0.01

    Microsoft Outlook Remote Code Execution Vulnerability

  • CVE-2025-21338HigJan 14, 2025
    risk 0.51cvss 7.8epss 0.00

    GDI+ Remote Code Execution Vulnerability

  • CVE-2024-38250HigSep 10, 2024
    risk 0.51cvss 7.8epss 0.01

    Windows Graphics Component Elevation of Privilege Vulnerability

  • CVE-2024-30104HigJun 11, 2024
    risk 0.51cvss 7.8epss 0.02

    Microsoft Office Remote Code Execution Vulnerability

  • CVE-2024-20673HigFeb 13, 2024
    risk 0.51cvss 7.8epss 0.01

    Microsoft Office Remote Code Execution Vulnerability

  • CVE-2024-20677HigJan 9, 2024
    risk 0.51cvss 7.8epss 0.03

    A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no…

  • CVE-2023-36045HigNov 14, 2023
    risk 0.51cvss 7.8epss 0.01

    Microsoft Office Graphics Remote Code Execution Vulnerability

Page 13 of 54