365 Apps
by Microsoft
CVEs (177)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-1581 | 0.01 | — | 0.04 | Aug 17, 2020 | An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to… | |||
| CVE-2020-1582 | 0.01 | — | 0.03 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1563 | 0.01 | — | 0.03 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1498 | 0.01 | — | 0.04 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1496 | 0.01 | — | 0.04 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1495 | 0.01 | — | 0.04 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2020-1494 | 0.01 | — | 0.04 | Aug 17, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is… | |||
| CVE-2021-41368 | 0.00 | — | 0.04 | Nov 10, 2021 | Microsoft Access Remote Code Execution Vulnerability | |||
| CVE-2021-40442 | 0.00 | — | 0.02 | Nov 10, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40485 | 0.00 | — | 0.03 | Oct 13, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40480 | 0.00 | — | 0.05 | Oct 13, 2021 | Microsoft Office Visio Remote Code Execution Vulnerability | |||
| CVE-2021-40479 | 0.00 | — | 0.02 | Oct 13, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40474 | 0.00 | — | 0.02 | Oct 13, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40473 | 0.00 | — | 0.02 | Oct 13, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40472 | 0.00 | — | 0.01 | Oct 13, 2021 | Microsoft Excel Information Disclosure Vulnerability | |||
| CVE-2021-40471 | 0.00 | — | 0.02 | Oct 13, 2021 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2021-40454 | 0.00 | — | 0.00 | Oct 13, 2021 | Rich Text Edit Control Information Disclosure Vulnerability | |||
| CVE-2021-38659 | 0.00 | — | 0.05 | Sep 15, 2021 | Microsoft Office Graphics Remote Code Execution Vulnerability | |||
| CVE-2021-38657 | 0.00 | — | 0.01 | Sep 15, 2021 | Microsoft Office Graphics Component Information Disclosure Vulnerability | |||
| CVE-2021-38650 | 0.00 | — | 0.01 | Sep 15, 2021 | Microsoft Office Spoofing Vulnerability |
- CVE-2020-1581Aug 17, 2020risk 0.01cvss —epss 0.04
An elevation of privilege vulnerability exists in the way that Microsoft Office Click-to-Run (C2R) components handle objects in memory. An attacker who successfully exploited the vulnerability could elevate privileges. The attacker would need to already have the ability to…
- CVE-2020-1582Aug 17, 2020risk 0.01cvss —epss 0.03
A remote code execution vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1563Aug 17, 2020risk 0.01cvss —epss 0.03
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1498Aug 17, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1496Aug 17, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1495Aug 17, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2020-1494Aug 17, 2020risk 0.01cvss —epss 0.04
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is…
- CVE-2021-41368Nov 10, 2021risk 0.00cvss —epss 0.04
Microsoft Access Remote Code Execution Vulnerability
- CVE-2021-40442Nov 10, 2021risk 0.00cvss —epss 0.02
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40485Oct 13, 2021risk 0.00cvss —epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40480Oct 13, 2021risk 0.00cvss —epss 0.05
Microsoft Office Visio Remote Code Execution Vulnerability
- CVE-2021-40479Oct 13, 2021risk 0.00cvss —epss 0.02
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40474Oct 13, 2021risk 0.00cvss —epss 0.02
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40473Oct 13, 2021risk 0.00cvss —epss 0.02
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40472Oct 13, 2021risk 0.00cvss —epss 0.01
Microsoft Excel Information Disclosure Vulnerability
- CVE-2021-40471Oct 13, 2021risk 0.00cvss —epss 0.02
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2021-40454Oct 13, 2021risk 0.00cvss —epss 0.00
Rich Text Edit Control Information Disclosure Vulnerability
- CVE-2021-38659Sep 15, 2021risk 0.00cvss —epss 0.05
Microsoft Office Graphics Remote Code Execution Vulnerability
- CVE-2021-38657Sep 15, 2021risk 0.00cvss —epss 0.01
Microsoft Office Graphics Component Information Disclosure Vulnerability
- CVE-2021-38650Sep 15, 2021risk 0.00cvss —epss 0.01
Microsoft Office Spoofing Vulnerability
Page 8 of 9