365 Apps
by Microsoft
CVEs (177)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-1711 | 0.01 | — | 0.04 | Jan 12, 2021 | Microsoft Office Remote Code Execution Vulnerability | |||
| CVE-2020-17067 | 0.01 | — | 0.03 | Nov 11, 2020 | Microsoft Excel Security Feature Bypass Vulnerability | |||
| CVE-2020-17064 | 0.01 | — | 0.03 | Nov 11, 2020 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2020-17065 | 0.01 | — | 0.04 | Nov 11, 2020 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2020-17062 | 0.01 | — | 0.04 | Nov 11, 2020 | Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability | |||
| CVE-2020-16957 | 0.01 | — | 0.04 | Oct 16, 2020 | A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit… | |||
| CVE-2020-16955 | 0.01 | — | 0.03 | Oct 16, 2020 | An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to… | |||
| CVE-2020-16954 | 0.01 | — | 0.03 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-16949 | 0.01 | — | 0.03 | Oct 16, 2020 | A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system. Exploitation of the… | |||
| CVE-2020-16932 | 0.01 | — | 0.04 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-16931 | 0.01 | — | 0.04 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-16930 | 0.01 | — | 0.04 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-16929 | 0.01 | — | 0.03 | Oct 16, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-16928 | 0.01 | — | 0.03 | Oct 16, 2020 | An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to… | |||
| CVE-2020-1594 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1338 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current… | |||
| CVE-2020-1335 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1332 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1218 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current… | |||
| CVE-2020-1193 | 0.01 | — | 0.04 | Sep 11, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… |
- CVE-2021-1711Jan 12, 2021risk 0.01cvss —epss 0.04
Microsoft Office Remote Code Execution Vulnerability
- CVE-2020-17067Nov 11, 2020risk 0.01cvss —epss 0.03
Microsoft Excel Security Feature Bypass Vulnerability
- CVE-2020-17064Nov 11, 2020risk 0.01cvss —epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2020-17065Nov 11, 2020risk 0.01cvss —epss 0.04
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2020-17062Nov 11, 2020risk 0.01cvss —epss 0.04
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
- CVE-2020-16957Oct 16, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit…
- CVE-2020-16955Oct 16, 2020risk 0.01cvss —epss 0.03
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to…
- CVE-2020-16954Oct 16, 2020risk 0.01cvss —epss 0.03
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-16949Oct 16, 2020risk 0.01cvss —epss 0.03
A denial of service vulnerability exists in Microsoft Outlook software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could cause a remote denial of service against a system. Exploitation of the…
- CVE-2020-16932Oct 16, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-16931Oct 16, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-16930Oct 16, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-16929Oct 16, 2020risk 0.01cvss —epss 0.03
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-16928Oct 16, 2020risk 0.01cvss —epss 0.03
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) AppVLP handles certain files. An attacker who successfully exploited the vulnerability could elevate privileges. To exploit this vulnerability, an attacker would need to…
- CVE-2020-1594Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1338Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current…
- CVE-2020-1335Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1332Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1218Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current…
- CVE-2020-1193Sep 11, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
Page 7 of 9