365 Apps
by Microsoft
CVEs (177)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-45459 | Low | 0.21 | 3.3 | 0.00 | Jun 9, 2026 | Protection mechanism failure in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally. | ||
| CVE-2023-29333 | Low | 0.21 | 3.3 | 0.01 | May 9, 2023 | Microsoft Access Denial of Service Vulnerability | ||
| CVE-2021-42292 | 0.15 | — | 0.32 | KEV | Nov 10, 2021 | Microsoft Excel Security Feature Bypass Vulnerability | ||
| CVE-2020-16947 | 0.04 | — | 0.34 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the targeted user. If the targeted user… | |||
| CVE-2021-31178 | 0.02 | — | 0.16 | May 11, 2021 | Microsoft Office Information Disclosure Vulnerability | |||
| CVE-2020-1224 | 0.02 | — | 0.04 | Sep 11, 2020 | An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an… | |||
| CVE-2020-1583 | 0.02 | — | 0.05 | Aug 17, 2020 | An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could… | |||
| CVE-2020-1503 | 0.02 | — | 0.05 | Aug 17, 2020 | An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could… | |||
| CVE-2020-1502 | 0.02 | — | 0.05 | Aug 17, 2020 | An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could… | |||
| CVE-2020-1497 | 0.02 | — | 0.05 | Aug 17, 2020 | An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could… | |||
| CVE-2020-1483 | 0.02 | — | 0.09 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on… | |||
| CVE-2020-1493 | 0.02 | — | 0.07 | Aug 17, 2020 | An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users to share attached files such that they are accessible by anonymous users where they should be restricted to specific users. To exploit this… | |||
| CVE-2021-40481 | 0.01 | — | 0.06 | Oct 13, 2021 | Microsoft Office Visio Remote Code Execution Vulnerability | |||
| CVE-2021-38656 | 0.01 | — | 0.05 | Sep 15, 2021 | Microsoft Word Remote Code Execution Vulnerability | |||
| CVE-2021-38655 | 0.01 | — | 0.05 | Sep 15, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-38654 | 0.01 | — | 0.05 | Sep 15, 2021 | Microsoft Office Visio Remote Code Execution Vulnerability | |||
| CVE-2021-38653 | 0.01 | — | 0.05 | Sep 15, 2021 | Microsoft Office Visio Remote Code Execution Vulnerability | |||
| CVE-2021-36941 | 0.01 | — | 0.02 | Aug 12, 2021 | Microsoft Word Remote Code Execution Vulnerability | |||
| CVE-2021-34478 | 0.01 | — | 0.54 | Aug 12, 2021 | Microsoft Office Remote Code Execution Vulnerability | |||
| CVE-2021-34501 | 0.01 | — | 0.53 | Jul 14, 2021 | Microsoft Excel Remote Code Execution Vulnerability |
- risk 0.21cvss 3.3epss 0.00
Protection mechanism failure in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.
- risk 0.21cvss 3.3epss 0.01
Microsoft Access Denial of Service Vulnerability
- risk 0.15cvss —epss 0.32
Microsoft Excel Security Feature Bypass Vulnerability
- CVE-2020-16947Oct 16, 2020risk 0.04cvss —epss 0.34
A remote code execution vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the targeted user. If the targeted user…
- CVE-2021-31178May 11, 2021risk 0.02cvss —epss 0.16
Microsoft Office Information Disclosure Vulnerability
- CVE-2020-1224Sep 11, 2020risk 0.02cvss —epss 0.04
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an…
- CVE-2020-1583Aug 17, 2020risk 0.02cvss —epss 0.05
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could…
- CVE-2020-1503Aug 17, 2020risk 0.02cvss —epss 0.05
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could…
- CVE-2020-1502Aug 17, 2020risk 0.02cvss —epss 0.05
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could…
- CVE-2020-1497Aug 17, 2020risk 0.02cvss —epss 0.05
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the user’s computer or data. To exploit the vulnerability, an attacker could…
- CVE-2020-1483Aug 17, 2020risk 0.02cvss —epss 0.09
A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on…
- CVE-2020-1493Aug 17, 2020risk 0.02cvss —epss 0.07
An information disclosure vulnerability exists when attaching files to Outlook messages. This vulnerability could potentially allow users to share attached files such that they are accessible by anonymous users where they should be restricted to specific users. To exploit this…
- CVE-2021-40481Oct 13, 2021risk 0.01cvss —epss 0.06
Microsoft Office Visio Remote Code Execution Vulnerability
- CVE-2021-38656Sep 15, 2021risk 0.01cvss —epss 0.05
Microsoft Word Remote Code Execution Vulnerability
- CVE-2021-38655Sep 15, 2021risk 0.01cvss —epss 0.05
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-38654Sep 15, 2021risk 0.01cvss —epss 0.05
Microsoft Office Visio Remote Code Execution Vulnerability
- CVE-2021-38653Sep 15, 2021risk 0.01cvss —epss 0.05
Microsoft Office Visio Remote Code Execution Vulnerability
- CVE-2021-36941Aug 12, 2021risk 0.01cvss —epss 0.02
Microsoft Word Remote Code Execution Vulnerability
- CVE-2021-34478Aug 12, 2021risk 0.01cvss —epss 0.54
Microsoft Office Remote Code Execution Vulnerability
- CVE-2021-34501Jul 14, 2021risk 0.01cvss —epss 0.53
Microsoft Excel Remote Code Execution Vulnerability
Page 5 of 9