Office Online Server
by Microsoft
CVEs (185)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-59235 | 0.00 | — | 0.01 | Oct 14, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | |||
| CVE-2025-59233 | 0.00 | — | 0.00 | Oct 14, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-59231 | 0.00 | — | 0.00 | Oct 14, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54900 | 0.00 | — | 0.01 | Sep 9, 2025 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54904 | 0.00 | — | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54903 | 0.00 | — | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54902 | 0.00 | — | 0.01 | Sep 9, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54898 | 0.00 | — | 0.01 | Sep 9, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-54896 | 0.00 | — | 0.01 | Sep 9, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-53739 | 0.00 | — | 0.01 | Aug 12, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-53737 | 0.00 | — | 0.01 | Aug 12, 2025 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-53735 | 0.00 | — | 0.01 | Aug 12, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-53759 | 0.00 | — | 0.00 | Aug 12, 2025 | Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-53741 | 0.00 | — | 0.00 | Aug 12, 2025 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-49711 | 0.00 | — | 0.00 | Jul 8, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-48812 | 0.00 | — | 0.01 | Jul 8, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. | |||
| CVE-2025-30383 | 0.00 | — | 0.00 | May 13, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-30381 | 0.00 | — | 0.00 | May 13, 2025 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-30379 | 0.00 | — | 0.00 | May 13, 2025 | Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-30376 | 0.00 | — | 0.01 | May 13, 2025 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
- CVE-2025-59235Oct 14, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
- CVE-2025-59233Oct 14, 2025risk 0.00cvss —epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-59231Oct 14, 2025risk 0.00cvss —epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54900Sep 9, 2025risk 0.00cvss —epss 0.01
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54904Sep 9, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54903Sep 9, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54902Sep 9, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54898Sep 9, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-54896Sep 9, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53739Aug 12, 2025risk 0.00cvss —epss 0.01
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53737Aug 12, 2025risk 0.00cvss —epss 0.01
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53735Aug 12, 2025risk 0.00cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53759Aug 12, 2025risk 0.00cvss —epss 0.00
Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-53741Aug 12, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-49711Jul 8, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-48812Jul 8, 2025risk 0.00cvss —epss 0.01
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
- CVE-2025-30383May 13, 2025risk 0.00cvss —epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-30381May 13, 2025risk 0.00cvss —epss 0.00
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-30379May 13, 2025risk 0.00cvss —epss 0.00
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-30376May 13, 2025risk 0.00cvss —epss 0.01
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Page 7 of 10