VYPR

Office Web Apps

by Microsoft

CVEs (120)

  • CVE-2014-0251May 14, 2014
    risk 0.01cvss epss 0.14

    Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation 2010 SP1 and SP2 and 2013 Gold and SP1; Project Server 2010 SP1 and SP2 and 2013 Gold and SP1; Web Applications 2010 SP1 and SP2; Office Web…

  • CVE-2014-0260Jan 15, 2014
    risk 0.01cvss epss 0.18

    Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office Compatibility Pack SP3; Word Viewer; SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attackers to execute arbitrary code or…

  • CVE-2013-5059Dec 11, 2013
    risk 0.01cvss epss 0.15

    Microsoft SharePoint Server 2010 SP1 and SP2 and 2013, and Office Web Apps 2013, allows remote attackers to execute arbitrary code via crafted page content, aka "SharePoint Page Content Vulnerabilities."

  • CVE-2013-1289Apr 9, 2013
    risk 0.01cvss epss 0.15

    Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 SP1, Groove Server 2010 SP1, SharePoint Foundation 2010 SP1, and Office Web Apps 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted string, aka "HTML Sanitization…

  • CVE-2012-1861Jul 10, 2012
    risk 0.01cvss epss 0.15

    Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka…

  • CVE-2012-1860Jul 10, 2012
    risk 0.01cvss epss 0.13

    Microsoft Office SharePoint Server 2007 SP2 and SP3, SharePoint Server 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 do not properly check permissions for search scopes, which allows remote authenticated users to obtain sensitive information or cause a denial of…

  • CVE-2021-40442Nov 10, 2021
    risk 0.00cvss epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-40486Oct 13, 2021
    risk 0.00cvss epss 0.06

    Microsoft Word Remote Code Execution Vulnerability

  • CVE-2021-40474Oct 13, 2021
    risk 0.00cvss epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-40472Oct 13, 2021
    risk 0.00cvss epss 0.01

    Microsoft Excel Information Disclosure Vulnerability

  • CVE-2021-34518Jul 14, 2021
    risk 0.00cvss epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-31174May 11, 2021
    risk 0.00cvss epss 0.03

    Microsoft Excel Information Disclosure Vulnerability

  • CVE-2021-27057Mar 11, 2021
    risk 0.00cvss epss 0.03

    Microsoft Office Remote Code Execution Vulnerability

  • CVE-2021-27054Mar 11, 2021
    risk 0.00cvss epss 0.03

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-27053Mar 11, 2021
    risk 0.00cvss epss 0.04

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-24069Feb 25, 2021
    risk 0.00cvss epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-24068Feb 25, 2021
    risk 0.00cvss epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-1715Jan 12, 2021
    risk 0.00cvss epss 0.04

    Microsoft Word Remote Code Execution Vulnerability

  • CVE-2021-1714Jan 12, 2021
    risk 0.00cvss epss 0.03

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2020-1442Jul 14, 2020
    risk 0.00cvss epss 0.02

    A spoofing vulnerability exists when an Office Web Apps server does not properly sanitize a specially crafted request, aka 'Office Web Apps XSS Vulnerability'.

Page 6 of 6