VYPR

Office Online Server

by Microsoft

CVEs (185)

  • CVE-2026-40360HigMay 12, 2026
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

  • CVE-2026-40359HigMay 12, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2026-32199HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2026-32198HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2026-32197HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2026-32189HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2022-41063HigNov 9, 2022
    risk 0.51cvss 7.8epss 0.01

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2022-41061HigNov 9, 2022
    risk 0.51cvss 7.8epss 0.01

    Microsoft Word Remote Code Execution Vulnerability

  • CVE-2022-29109HigMay 10, 2022
    risk 0.51cvss 7.8epss 0.03

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2022-26901HigApr 15, 2022
    risk 0.51cvss 7.8epss 0.03

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2021-43256HigDec 15, 2021
    risk 0.51cvss 7.8epss 0.02

    Microsoft Excel Remote Code Execution Vulnerability

  • CVE-2016-0025HigJun 16, 2016
    risk 0.49cvss 7.3epss 0.17

    Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 2016, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint…

  • CVE-2026-44818HigJun 9, 2026
    risk 0.46cvss 7.0epss 0.00

    Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

  • CVE-2026-32188HigApr 14, 2026
    risk 0.46cvss 7.1epss 0.00

    Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.

  • CVE-2023-33162MedJul 11, 2023
    risk 0.36cvss 5.5epss 0.01

    Microsoft Excel Information Disclosure Vulnerability

  • CVE-2022-41103MedNov 9, 2022
    risk 0.36cvss 5.5epss 0.01

    Microsoft Word Information Disclosure Vulnerability

  • CVE-2022-41060MedNov 9, 2022
    risk 0.36cvss 5.5epss 0.01

    Microsoft Word Information Disclosure Vulnerability

  • CVE-2018-8247MedJun 14, 2018
    risk 0.35cvss 5.4epss 0.03

    An elevation of privilege vulnerability exists when Office Web Apps Server 2013 and Office Online Server fail to properly handle web requests, aka "Microsoft Office Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Office Online Server. This CVE ID…

  • CVE-2017-0195MedApr 12, 2017
    risk 0.35cvss 5.4epss 0.04

    Microsoft Excel Services on Microsoft SharePoint Server 2010 SP1 and SP2, Microsoft Excel Web Apps 2010 SP2, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps Server 2013 SP1 and Office Online Server allows remote attackers to perform cross-site scripting and run…

  • CVE-2023-21716Feb 14, 2023
    risk 0.07cvss epss 0.82

    Microsoft Word Remote Code Execution Vulnerability

Page 2 of 10