Powerpoint
by Microsoft
CVEs (90)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-53761 | 0.00 | — | 0.00 | Aug 12, 2025 | Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-49705 | 0.00 | — | 0.00 | Jul 8, 2025 | Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-49699 | 0.00 | — | 0.00 | Jul 8, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-29978 | 0.00 | — | 0.00 | May 13, 2025 | Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | |||
| CVE-2024-39804 | 0.00 | — | 0.01 | Dec 18, 2024 | A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this… | |||
| CVE-2024-38171 | 0.00 | — | 0.01 | Aug 13, 2024 | Microsoft PowerPoint Remote Code Execution Vulnerability | |||
| CVE-2022-37962 | 0.00 | — | 0.01 | Sep 13, 2022 | Microsoft PowerPoint Remote Code Execution Vulnerability | |||
| CVE-2001-0005 | 0.00 | — | 0.02 | Feb 12, 2001 | Buffer overflow in the parsing mechanism of the file loader in Microsoft PowerPoint 2000 allows attackers to execute arbitrary commands. | |||
| CVE-2000-0765 | 0.00 | — | 0.04 | Oct 20, 2000 | Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability. | |||
| CVE-2000-0088 | 0.00 | — | 0.02 | Jan 20, 2000 | Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability. |
- CVE-2025-53761Aug 12, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-49705Jul 8, 2025risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-49699Jul 8, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-29978May 13, 2025risk 0.00cvss —epss 0.00
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2024-39804Dec 18, 2024risk 0.00cvss —epss 0.01
A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this…
- CVE-2024-38171Aug 13, 2024risk 0.00cvss —epss 0.01
Microsoft PowerPoint Remote Code Execution Vulnerability
- CVE-2022-37962Sep 13, 2022risk 0.00cvss —epss 0.01
Microsoft PowerPoint Remote Code Execution Vulnerability
- CVE-2001-0005Feb 12, 2001risk 0.00cvss —epss 0.02
Buffer overflow in the parsing mechanism of the file loader in Microsoft PowerPoint 2000 allows attackers to execute arbitrary commands.
- CVE-2000-0765Oct 20, 2000risk 0.00cvss —epss 0.04
Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embedded object tag, aka the "Microsoft Office HTML Object Tag" vulnerability.
- CVE-2000-0088Jan 20, 2000risk 0.00cvss —epss 0.02
Buffer overflow in the conversion utilities for Japanese, Korean and Chinese Word 5 documents allows an attacker to execute commands, aka the "Malformed Conversion Data" vulnerability.
Page 5 of 5