Office Visio

CVEs (411)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-33151	Microsoft Outlook	Med	0.42	6.5	0.01		Jul 11, 2023	Microsoft Outlook Spoofing Vulnerability
CVE-2023-36009	Microsoft Word	Med	0.36	5.5	0.00		Dec 12, 2023	Microsoft Word Information Disclosure Vulnerability
CVE-2023-33162	Microsoft Excel	Med	0.36	5.5	0.01		Jul 11, 2023	Microsoft Excel Information Disclosure Vulnerability
CVE-2022-41105	Microsoft Excel	Med	0.36	5.5	0.02		Nov 9, 2022	Microsoft Excel Information Disclosure Vulnerability
CVE-2022-41104	Microsoft Excel	Med	0.36	5.5	0.03		Nov 9, 2022	Microsoft Excel Security Feature Bypass Vulnerability
CVE-2022-41103	Microsoft Word	Med	0.36	5.5	0.02		Nov 9, 2022	Microsoft Word Information Disclosure Vulnerability
CVE-2022-41060	Microsoft Word	Med	0.36	5.5	0.02		Nov 9, 2022	Microsoft Word Information Disclosure Vulnerability
CVE-2022-29107	Microsoft Office	Med	0.36	5.5	0.08		May 10, 2022	Microsoft Office Security Feature Bypass Vulnerability
CVE-2022-24511	Microsoft Office Visio	Med	0.36	5.5	0.01		Mar 9, 2022	Microsoft Office Word Tampering Vulnerability
CVE-2022-24462	Microsoft Word	Med	0.36	5.5	0.01		Mar 9, 2022	Microsoft Word Security Feature Bypass Vulnerability
CVE-2019-0541	Microsoft Internet Explorer		0.22	—	0.83	KEV	Jan 8, 2019	A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft…
CVE-2023-29333	Microsoft Access	Low	0.21	3.3	0.00		May 9, 2023	Microsoft Access Denial of Service Vulnerability
CVE-2024-21413	Microsoft Office Visio		0.19	—	0.93	KEV	Feb 13, 2024	Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-23397	Microsoft Office Visio		0.19	—	0.93	KEV	Mar 14, 2023	Microsoft Outlook Elevation of Privilege Vulnerability
CVE-2024-38189	Microsoft Office Visio		0.15	—	0.44	KEV	Aug 13, 2024	Microsoft Project Remote Code Execution Vulnerability
CVE-2019-1297	Microsoft Office Visio		0.15	—	0.41	KEV	Sep 11, 2019	A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
CVE-2026-21509	Microsoft Office		0.13	—	0.11	KEV	Jan 26, 2026	Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.
CVE-2024-38226	Microsoft Publisher		0.12	—	0.01	KEV	Sep 10, 2024	Microsoft Publisher Security Feature Bypass Vulnerability
CVE-2023-36761	Microsoft Office Visio		0.12	—	0.06	KEV	Sep 12, 2023	Microsoft Word Information Disclosure Vulnerability
CVE-2023-35311	Microsoft Office Visio		0.12	—	0.00	KEV	Jul 11, 2023	Microsoft Outlook Security Feature Bypass Vulnerability

CVE-2023-33151MedJul 11, 2023
Microsoft
Outlook
risk 0.42cvss 6.5epss 0.01
Microsoft Outlook Spoofing Vulnerability
CVE-2023-36009MedDec 12, 2023
Microsoft
Word
risk 0.36cvss 5.5epss 0.00
Microsoft Word Information Disclosure Vulnerability
CVE-2023-33162MedJul 11, 2023
Microsoft
Excel
risk 0.36cvss 5.5epss 0.01
Microsoft Excel Information Disclosure Vulnerability
CVE-2022-41105MedNov 9, 2022
Microsoft
Excel
risk 0.36cvss 5.5epss 0.02
Microsoft Excel Information Disclosure Vulnerability
CVE-2022-41104MedNov 9, 2022
Microsoft
Excel
risk 0.36cvss 5.5epss 0.03
Microsoft Excel Security Feature Bypass Vulnerability
CVE-2022-41103MedNov 9, 2022
Microsoft
Word
risk 0.36cvss 5.5epss 0.02
Microsoft Word Information Disclosure Vulnerability
CVE-2022-41060MedNov 9, 2022
Microsoft
Word
risk 0.36cvss 5.5epss 0.02
Microsoft Word Information Disclosure Vulnerability
CVE-2022-29107MedMay 10, 2022
Microsoft
Office
risk 0.36cvss 5.5epss 0.08
Microsoft Office Security Feature Bypass Vulnerability
CVE-2022-24511MedMar 9, 2022
Microsoft
Office Visio
risk 0.36cvss 5.5epss 0.01
Microsoft Office Word Tampering Vulnerability
CVE-2022-24462MedMar 9, 2022
Microsoft
Word
risk 0.36cvss 5.5epss 0.01
Microsoft Word Security Feature Bypass Vulnerability
CVE-2019-0541KEVJan 8, 2019
Microsoft
Internet Explorer
risk 0.22cvss —epss 0.83
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft…
CVE-2023-29333LowMay 9, 2023
Microsoft
Access
risk 0.21cvss 3.3epss 0.00
Microsoft Access Denial of Service Vulnerability
CVE-2024-21413KEVFeb 13, 2024
Microsoft
Office Visio
risk 0.19cvss —epss 0.93
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-23397KEVMar 14, 2023
Microsoft
Office Visio
risk 0.19cvss —epss 0.93
Microsoft Outlook Elevation of Privilege Vulnerability
CVE-2024-38189KEVAug 13, 2024
Microsoft
Office Visio
risk 0.15cvss —epss 0.44
Microsoft Project Remote Code Execution Vulnerability
CVE-2019-1297KEVSep 11, 2019
Microsoft
Office Visio
risk 0.15cvss —epss 0.41
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
CVE-2026-21509KEVJan 26, 2026
Microsoft
Office
risk 0.13cvss —epss 0.11
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.
CVE-2024-38226KEVSep 10, 2024
Microsoft
Publisher
risk 0.12cvss —epss 0.01
Microsoft Publisher Security Feature Bypass Vulnerability
CVE-2023-36761KEVSep 12, 2023
Microsoft
Office Visio
risk 0.12cvss —epss 0.06
Microsoft Word Information Disclosure Vulnerability
CVE-2023-35311KEVJul 11, 2023
Microsoft
Office Visio
risk 0.12cvss —epss 0.00
Microsoft Outlook Security Feature Bypass Vulnerability

Page 3 of 21